All 3 CVE vulnerabilities found in Spring HATEOAS, with AI-generated Chinese analysis, references, and POCs.
Vendor: Spring
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-41007 | Spring HATEOAS heap exhaustion through unbounded internal caching CWE-770 | 7.5 | High | 2026-06-09 |
| CVE-2026-41006 | Spring HATEOAS Collection+JSON/UBER deserializers do not honor Jackson configuration CWE-284 | 7.5 | High | 2026-06-09 |
| CVE-2023-34036 | Forwarded header exploit with Spring HATEOAS on WebFlux CWE-644 | 5.3 | Medium | 2023-07-17 |
All 3 known CVE vulnerabilities affecting Spring HATEOAS with full Chinese analysis, references, and POCs where available.