CVE-2026-40968 | Vmware Spring gRPC up to 1.0.2 SecurityContext improper isolation or compartmentalization

Inserito da Angelo Barbosa | Apr 28, 2026 | CVE

A vulnerability categorized as problematic has been discovered in Vmware Spring gRPC up to 1.0.2. This issue affects some unknown processing of the component SecurityContext. Such manipulation leads to improper isolation or compartmentalization.

This vulnerability is referenced as CVE-2026-40968. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-40968 | Vmware Spring gRPC up to 1.0.2 SecurityContext improper isolation or compartmentalization

Post correlati

CVE-2024-57049 | TP-LINK Archer C20 up to 6.6_230412 /cgi improper authentication

CVE-2024-12799 | OpenText Identity Manager Advanced Edition up to 4.8.7.0102/4.9.0.0 insufficiently protected credentials

CVE-2025-57460 | machsol machpanel 8.0.32 unrestricted upload

CVE-2025-21532 | Oracle Analytics Desktop up to 8.0.x Install Local Privilege Escalation