ReportizFlow
Filtered by vendor Spring
Subscriptions
Filtered by product Spring Hateoas
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-41007 | 1 Spring | 1 Spring Hateoas | 2026-06-09 | 7.5 High |
| Spring HATEOAS maintains an unbounded static cache of StringLinkRelation instances keyed on attacker-supplied strings. Affected versions: Spring HATEOAS 1.5.0 through 1.5.6; 2.3.0 through 2.3.4; 2.4.0 through 2.4.1; 2.5.0 through 2.5.2; 3.0.0 through 3.0.3. | ||||
Page 1 of 1.