CVE-2026-41699 | Vmware Spring for GraphQL up to 1.3.8/1.4.5/2.0.3 deserialization

Inserito da Angelo Barbosa | Giu 11, 2026 | CVE

A vulnerability classified as problematic has been found in Vmware Spring for GraphQL up to 1.3.8/1.4.5/2.0.3. The impacted element is an unknown function. The manipulation leads to deserialization.

This vulnerability is referenced as CVE-2026-41699. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-41699 | Vmware Spring for GraphQL up to 1.3.8/1.4.5/2.0.3 deserialization

Post correlati

CVE-2024-27324 | Tracker Software PDF-XChange Editor TIF File Parser out-of-bounds

CVE-2024-26653 | Linux Kernel up to 6.9-rc1 ljca auxiliary_device_add double free (7c9631969287)

CVE-2024-52677 | HkCms up to 2.3.2.240702 Upload.php getFileName unrestricted upload

CVE-2024-39740 | IBM Datacap Navigator 9.1.5/9.1.6/9.1.7/9.1.8/9.1.9 HTTP Request unknown vulnerability (XFDB-296009)