VIR Vulnerability Intelligence Relay

Package impact

java Maven / org.springframework.boot:spring-boot-cassandra

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-40974 critical 9.8 9.8 1mo ago Spring Boot's Cassandra SSL auto-configuration disables TLS hostname verification javavmware
CVE-2026-40975 high 7.5 7.5 1mo ago Spring Boot's random value property source uses a weak PRNG unsuitable for secrets javavmware
CVE-2026-40977 medium 6.7 6.7 1mo ago Spring Boot's PID file write follows symlinks at predictable default path javavmware