Package impact
Maven / org.springframework.cloud:spring-cloud-config-server
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2026-40982 | critical | 9.1 | 9.1 | 21d ago | Spring Cloud Config vulnerable to Path Traversal | |
| CVE-2026-41002 | high | 8.1 | 8.1 | 21d ago | Spring Cloud Config Server Susceptible To TOCTOU Attack | |
| CVE-2026-41004 | medium | 4.4 | 4.4 | 21d ago | Spring Cloud Config Server Logged Sensitive Information | |
| CVE-2020-5410 | unknown | — | 1.5 | 6y ago | Directory traversal attack in Spring Cloud Config | |
| CVE-2026-22739 | unknown | — | — | 2mo ago | Spring Cloud Config Server: Path Traversal via Profile Parameter Allows Arbitrary File Access | |
| CVE-2020-5405 | unknown | — | — | 6y ago | Directory traversal attack in Spring Cloud Config | |
| CVE-2019-3799 | unknown | — | — | 7y ago | Path Traversal in Spring Cloud Config |