pkg:Maven/org.springframework.boot:spring-boot

共 5 筆 CVECRITICAL1HIGH3MEDIUM1

✅ 檢查你的版本

所有已知漏洞

  • CRITICAL9.1CVE-2026-40976Spring Boot's default security filter chain has no authorization rule with Actuator but without Health
    >= 4.0.0, < 4.0.6
  • HIGH7.8CVE-2022-27772Temporary Directory Hijacking to Local Privilege Escalation Vulnerability in org.springframework.boot:spring-boot
    from 0, < 2.2.11.RELEASE
  • HIGH7.3CVE-2025-22235Spring Boot EndpointRequest.to() creates wrong matcher if actuator endpoint is not exposed
    from 0, <= 2.7.24.2
  • HIGH7.0CVE-2026-40973Spring Boot accepts predictable temp directory without ownership verification
    >= 4.0.0, < 4.0.6
  • MEDIUM5.9CVE-2018-1196Moderate severity vulnerability that affects org.springframework.boot:spring-boot
    >= 1.5.0, < 1.5.10