Количество 3
Количество 3
CVE-2026-22733
Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint that requires authentication is declared under the path used by the CloudFoundry Actuator endpoints. This issue affects Spring Security: from 4.0.0 through 4.0.3, from 3.5.0 through 3.5.11, from 3.4.0 through 3.4.14, from 3.3.0 through 3.3.17, from 2.7.0 through 2.7.31.
CVE-2026-22733
Spring Boot applications with Actuator can be vulnerable to an "Authen ...
GHSA-mgvc-8q2h-5pgc
Spring Boot has an Authentication Bypass under Actuator CloudFoundry endpoints
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-22733 Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint that requires authentication is declared under the path used by the CloudFoundry Actuator endpoints. This issue affects Spring Security: from 4.0.0 through 4.0.3, from 3.5.0 through 3.5.11, from 3.4.0 through 3.4.14, from 3.3.0 through 3.3.17, from 2.7.0 through 2.7.31. | CVSS3: 8.2 | 0% Низкий | 16 дней назад |
| CVE-2026-22733 Spring Boot applications with Actuator can be vulnerable to an "Authen ... | CVSS3: 8.2 | 0% Низкий | 16 дней назад |
| GHSA-mgvc-8q2h-5pgc Spring Boot has an Authentication Bypass under Actuator CloudFoundry endpoints | CVSS3: 8.2 | 0% Низкий | 16 дней назад |
Уязвимостей на страницу