| CVE-2026-20794 | critical | 9.3 | Buffer overflow for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version… | May 12, 2026 | May 13, 2026 |
| CVE-2026-41713 | high | 8.2 | A malicious user could craft input that is stored in conversation memory and later interpreted by th… | May 12, 2026 | May 12, 2026 |
| CVE-2026-41712 | high | 7.5 | Spring AI's chat memory component contained a problematic default that, when not explicitly overridd… | May 12, 2026 | May 12, 2026 |
| CVE-2026-41705 | high | 8.6 | Spring AI's MilvusVectorStore#doDelete(List) implementation is vulnerable to filter-expression injec… | May 9, 2026 | May 12, 2026 |
| CVE-2026-41004 | medium | 4.4 | When enabling trace logging in Spring Cloud Config Server sensitive information was placed in plain … | May 7, 2026 | May 12, 2026 |
| CVE-2026-41002 | high | 7.2 | The base directory (`spring.cloud.config.server.git.basedir`) used by the Spring Cloud Config Server… | May 7, 2026 | May 12, 2026 |
| CVE-2026-40982 | critical | 9.1 | Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-… | May 7, 2026 | May 12, 2026 |
| CVE-2026-40981 | high | 7.5 | When using Google Secrets Manager as a backend for the Spring Cloud Config server a client can craft… | May 7, 2026 | May 12, 2026 |
| CVE-2026-22745 | medium | 5.3 | Spring MVC and WebFlux applications are vulnerable to Denial of Service attacks when resolving stati… | Apr 29, 2026 | May 4, 2026 |
| CVE-2026-22741 | low | 3.1 | Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static resource… | Apr 29, 2026 | May 4, 2026 |
| CVE-2026-22740 | medium | 6.5 | A WebFlux server application that processes multipart requests creates temp files for parts larger t… | Apr 29, 2026 | May 4, 2026 |
| CVE-2026-40969 | low | 3.7 | The raw message of every server-side AuthenticationException is returned to the unauthenticated remo… | Apr 28, 2026 | Apr 30, 2026 |
| CVE-2026-40968 | medium | 4.2 | When an authenticated user is denied access to a gRPC method, their authenticated identity remains b… | Apr 28, 2026 | Apr 30, 2026 |
| CVE-2026-40980 | medium | 6.5 | In Spring AI, a malicious PDF file can be crafted that triggers the allocation of unreasonable amoun… | Apr 28, 2026 | Apr 29, 2026 |
| CVE-2026-40979 | medium | 6.1 | In Spring AI, having access to a shared environment can expose the ONNX model used by the applicatio… | Apr 28, 2026 | Apr 29, 2026 |
| CVE-2026-40978 | high | 8.8 | SQL injection vulnerability in Spring AI's `CosmosDBVectorStore` allows attackers to execute arbitra… | Apr 28, 2026 | Apr 29, 2026 |
| CVE-2026-40966 | medium | 5.9 | In Spring AI, an attacker can bypass conversation isolation and exfiltrate sensitive memory from oth… | Apr 28, 2026 | Apr 29, 2026 |
| CVE-2026-40967 | high | 8.6 | In Spring AI, various FilterExpressionConverter implementations accept a filter expression object an… | Apr 28, 2026 | Apr 29, 2026 |
| CVE-2026-40977 | medium | 4.7 | When an application is configured to use `ApplicationPidFileWriter`, a local attacker with write acc… | Apr 28, 2026 | Apr 30, 2026 |
| CVE-2026-40976 | critical | 9.1 | In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized ac… | Apr 28, 2026 | Apr 30, 2026 |
| CVE-2026-40975 | medium | 4.8 | Values produced by ${random.value} are not suitable for use as secrets. ${random.uuid} is not affect… | Apr 28, 2026 | Apr 30, 2026 |
| CVE-2026-40973 | high | 7.0 | A local attacker on the same host as the application may be able to take control of the directory us… | Apr 28, 2026 | Apr 30, 2026 |
| CVE-2026-40972 | high | 7.5 | An attacker on the same network as the remote application may be able to utilize a timing attack to … | Apr 28, 2026 | Apr 30, 2026 |
| CVE-2026-31431 | high | 7.8 | In the Linux kernel, the following vulnerability has been resolved:
crypto: algif_aead - Revert to … | Apr 22, 2026 | May 12, 2026 |
| CVE-2026-22754 | high | 7.5 | Vulnerability in Spring Spring Security. If an application uses <sec:intercept-url servlet-path="/se… | Apr 22, 2026 | Apr 24, 2026 |
