VIR Vulnerability Intelligence Relay

Package impact

java MAVEN / org.springframework.boot:spring-boot-devtools

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-40972 high 7.5 7.5 1mo ago Spring Boot DevTools remote secret comparison is vulnerable to timing attacks