vmware

Top products

The 15 most recently published vulnerabilities affecting vmware.

• CVE-2026-47835Spring AI vector store metadata filtering to handle special characters in Elasticsearch, OpenSearch, and GemFire Vector Stores8.6Jun 15, 2026
• CVE-2026-41856Spring GraphQL Annotation Detection Vulnerability7.5Jun 11, 2026
• CVE-2026-41700Cross-Site WebSocket Hijacking in Spring for GraphQL8.1Jun 11, 2026
• CVE-2026-41699Unsafe Deserialization in Spring GraphQL8.1Jun 11, 2026
• CVE-2026-47838Unauthorized User Impersonation when Using X.509 Client Certificates6.8Jun 9, 2026
• CVE-2026-41837Spring Data REST Querydsl integration exposes Jackson-hidden persistent fields as filter keys5.3Jun 9, 2026
• CVE-2026-41732In Spring for Apache Pulsar, overly broad trusted-package matching in header mapper exposes JDK classes to deserialization8.1Jun 9, 2026
• CVE-2026-41731In Spring for Apache Kafka, overly broad trusted-package matching in header mappers exposes JDK classes to deserialization8.1Jun 9, 2026
• CVE-2026-41730Spring Data REST exposes persistence-layer internals in error responses5.3Jun 9, 2026
• CVE-2026-41729Spring Data REST SpEL Injection via Map Key in JSON Patch8.1Jun 9, 2026
• CVE-2026-41728Spring Data REST JSON Patch bypasses Jackson read-only property protection on nested objects and collections7.5Jun 9, 2026
• CVE-2026-41727In Spring for Apache Kafka, forged retry topic headers subvert retry routing and backoff behavior6.5Jun 9, 2026
• CVE-2026-41717Spring Data MongoDB - SpEL Expression Injection via Annotated Query Parameter Binding8.1Jun 9, 2026
• CVE-2026-41706Open Redirect When Using CookieRequestCache6.1Jun 9, 2026
• CVE-2026-41696Spring Data MongoDB Bind Parameter Literal Quoting Breakout5.9Jun 9, 2026