High CVE-2026-41007 Spring HATEOAS maintains an unbounded static cache of StringLinkRelation instances keyed on attacker-supplied strings. Affected versions: Spring HATEOAS 1.5.0 through 1.5.6; 2.3.0 through 2.3.4; 2.4.0 through 2.4.1; 2.5.0 through 2.5.2; 3.0.0 through 3.0.3. CVSS: 7.5 · CWE:...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

[High] CVE-2026-41007 – Spring HATEOAS maintains an unbounded static cache of StringLinkRelation instanc...

VERWANDTEARTIKEL

CVE-2026-49741 - TYPO3 CMS - Privilege Escalation & SQL Injection in Form Framework

Google fixes the fifth actively exploited Chrome zero-day of 2026

CVE-2026-46746 - Siemens SINEC INS Command Injection

CVE-2026-46748 - SINEC INS Local Privilege Escalation via CAP_DAC_OVERRIDE

CVE-2026-41031 - A Stored Cross-Site Scripting (XSS) vulnerability occurs in Vinna Process Monitor

CVE-2026-10731 - SQL injection in Nemon products