CVE-2026-22740 in Spring Frameworkinformación

Resumen

por MITRE • 2026-04-29

A WebFlux server application that processes multipart requests creates temp files for parts larger than 10 K. Under some circumstances, temp files may remain not deleted after the request is fully processed. This allows an attacker to consume available disk space.

Older, unsupported versions are also affected.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Vmware

Reservar

2026-01-09

Divulgación

2026-04-29

Moderación

aceptado

Artículo

VDB-360125

CPE

listo

CWE

CWE-400 (confirmado)

CVSS

2.9 (CNA)

EPSS

0.00061

KEV

Actividades

muy bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-22740
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-22740
CVE Details	https://www.cvedetails.com/cve/CVE-2026-22740/

◂ Anterior Visión De Conjunto Próximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!