CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST - in English

CISA KEV catalog updated: (v2026.07.10)

CVE-2026-44505
Medium

In versions prior to 1.4.0, the network-libp2p library in Nimiq improperly handles DHT record verification errors, potentially leading to future queries hanging indefinitely.

CVE-2026-41837
Medium

A vulnerability in Spring Data REST allows an attacker to pass arbitrary persistent property paths as request parameter filter keys without considering Jackson customizations before handing them to Querydsl. This could lead to unauthorized data access or data leakage.

CVE-2026-41730
Medium

A vulnerability in Spring Data REST serializes the full exception cause chain into HTTP error response bodies, potentially exposing persistence-layer internals to HTTP clients.

CVE-2026-41727
Medium

The vulnerability in Spring Kafka concerns the retry topic infrastructure, which did not sufficiently validate user-controlled header values. A producer could send a record with a crafted retry_topic-attempts header containing an out-of-range attempt count, causing the retry topic router to misidentify the message's position in the retry sequence.

CVE-2026-41726
Medium

A vulnerability in Spring for Apache Kafka allows an attacker producer to unboundedly increase the consumer's heap memory usage by sending records with unique `spring.kafka.serialization.selector` header values, leading to GC thrash and OutOfMemoryError.

CVE-2026-41721
Medium

A vulnerability in Spring Data Commons can lead to a Denial of Service (DoS) condition when Spring Data Web Support is enabled with a Controller method using @ProjectedPayload. An attacker can send a crafted HTTP request causing excessive memory allocation.

CVE-2026-41719
Medium

A SpEL Injection vulnerability in Spring Data KeyValue occurs when unsanitized user input is passed as Sort into a repository query method that delegates evaluation to the SpelPropertyComparator. An attacker can inject malicious SpEL expressions, leading to remote code execution.

CVE-2026-41714
Medium

Vulnerability in Spring AMQP causes applications using RabbitConnectionFactoryBean.setUri("amqps://...") without calling setUseSSL(true) to get TLS encryption with no certificate validation and no hostname verification.

CVE-2026-41711
Medium

Applications using Spring Data Commons may be vulnerable to a Denial of Service (DoS) attack leading to a StackOverflowException when parsing Sort parameters.

CVE-2026-41706
Medium

Vulnerability in Spring Security's CookieRequestCache and CookieServerRequestCache stores the full absolute pre-authentication request URL in a browser cookie. After successful login, the user is redirected to this URL without validation, allowing an attacker to manipulate the redirect target.

CVE-2026-41701
Medium

Correlation IDs for replies in RabbitTemplate.sendAndReceive() with the fixed reply queue are predictable due to an internal simple counter.

CVE-2026-41697
Medium

Vulnerability in Spring Data Relational involves improper escaping of binding values for externally-controlled input when using StringMatcher (STARTING, ENDING, or CONTAINING) in Query By Example (QBE). An attacker can supply wildcard characters to perform boolean-based blind data inference.

CVE-2026-41696
Medium

In Spring Data MongoDB repository query methods annotated with @Query that use regex parameter binding, there is insufficient validation of the bound parameter. An attacker can supply a crafted string to break out of the intended regular expression quoting.

CVE-2026-41008
Medium

The vulnerability in Spring Security Authorization Server is due to insufficient validation of the request_uri parameter in the authorization endpoint. An attacker can craft a malicious authorization request with an invalid request_uri and an arbitrary, unvalidated redirect_uri, leading to an Open Redirect vulnerability.

CVE-2026-40991
Medium

Vulnerability in Spring REST Docs allows an XXE (XML External Entity) attack when documenting a remote API over HTTP. An attacker can compromise the API or trick the user into documenting a malicious API, leading to an attack when documentation-generating tests are next executed.

CVE-2026-9754
Medium

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command.

CVE-2026-9752
Medium

An authorized user could trigger a server crash by running a query with a 2dsphere index on a field that stores a GeoJSON GeometryCollection containing a Polygon with a strict-winding CRS.

CVE-2026-9751
Medium

The ldapQueryPassword parameter, when set through the runtime setParameter command, logs the new password to the mongod.log file in plain text.

CVE-2026-9750
Medium

An authenticated user can cause a MongoDB server to crash or return incorrect results by creating documents that interfere with internal metadata processing during query execution. This stems from insufficient separation between user-controlled document fields and internal metadata in certain execution paths.

CVE-2026-9749
Medium

The vulnerability occurs when running an aggregation pipeline using the internal $exchange stage configured with key-range partitioning and order-preserving delivery. If a single key range produces enough documents to fill its exchange buffer, the server does not update the internal 'high watermark' for that key range as intended.

PreviousPage 143 of 560Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS