Package impact
Maven / org.springframework.cloud:spring-cloud-config-server
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41002 | high | 8.1 | 8.1 | 28d ago | Spring Cloud Config Server Susceptible To TOCTOU Attack | |||
| CVE-2020-5410 | unknown | — | 2.5 | 6y ago | Spring, by VMware Tanzu, Cloud Config contains a path traversal vulnerability that allows applications to serve arbitrary configuration files. | |||
| CVE-2019-3799 | unknown | — | 1.0 | 7y ago | Path Traversal in Spring Cloud Config | |||
| CVE-2026-22739 | unknown | — | — | 2mo ago | Spring Cloud Config Server: Path Traversal via Profile Parameter Allows Arbitrary File Access | |||
| CVE-2020-5405 | unknown | — | — | 6y ago | Directory traversal attack in Spring Cloud Config |