Описание
Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint that requires authentication is declared under a specific path, already configured for a Health Group additional path.
This issue affects Spring Boot: from 4.0 before 4.0.3, from 3.5 before 3.5.11, from 3.4 before 3.4.15.
This CVE is similar but not equivalent to CVE-2026-22733, as the conditions for exploit and vulnerable versions are different.
A flaw was found in Spring Boot. This vulnerability, an authentication bypass, occurs when an application endpoint requiring authentication is declared under a specific path already configured for a Health Group additional path. A remote attacker could exploit this to bypass authentication, potentially gaining unauthorized access to sensitive application endpoints. This could lead to information disclosure or unauthorized actions.
Меры по смягчению последствий
To mitigate, ensure that application endpoints requiring authentication are not declared under paths already configured as Health Group additional paths within Spring Boot applications using Actuator. Review and adjust your application's configuration to prevent this overlap. A redeployment of the application is required for changes to take effect.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat AMQ Broker 7 | spring-boot | Affected | ||
| Red Hat AMQ Clients | spring-boot | Affected | ||
| Red Hat build of Apache Camel for Spring Boot 4 | spring-boot | Affected | ||
| Red Hat build of Apache Camel - HawtIO 4 | spring-boot | Affected | ||
| Red Hat build of OptaPlanner 8 | spring-boot | Affected | ||
| Red Hat Data Grid 8 | spring-boot | Affected | ||
| Red Hat Fuse 7 | spring-boot | Affected | ||
| Red Hat JBoss Enterprise Application Platform 7 | spring-boot | Not affected | ||
| Red Hat JBoss Enterprise Application Platform 8 | spring-boot | Not affected | ||
| Red Hat JBoss Enterprise Application Platform Expansion Pack | spring-boot | Not affected |
Показывать по
Дополнительная информация
Статус:
8.2 High
CVSS3
Связанные уязвимости
Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint that requires authentication is declared under a specific path, already configured for a Health Group additional path. This issue affects Spring Boot: from 4.0 before 4.0.3, from 3.5 before 3.5.11, from 3.4 before 3.4.15. This CVE is similar but not equivalent to CVE-2026-22733, as the conditions for exploit and vulnerable versions are different.
Spring Boot has an Authentication Bypass under Actuator Health groups paths
8.2 High
CVSS3