Spring integration
This hub aggregates every CVE we track for Spring integration, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
3
CVEs tracked
2
Critical
1
High
0
In CISA KEV
Severity distribution
CRITICAL2HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
2024-072026-06
Latest CVEs
The 3 most recently published vulnerabilities affecting Spring integration.
- CVE-2026-40987Remote-file synchronizer in Spring Integration writes server-supplied filename under localDirectory without canonicalization7.1
- CVE-2020-5413Kryo Configuration Allows Code Execution with Unknown "Serialization Gadgets"9.8
- CVE-2019-3772Spring Integration XML External Entity Injection (XXE)9.8
Product normalization is registry-driven with AI assist and human review. How it works