FLAT-MKUPA (CVE-2026-40977)
Race condition In org.springframework.boot:spring-boot-cassandra
3.8
Low
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-cassandra
FLAT-86S71 (CVE-2026-40973)
Insecure temporary files In org.springframework.boot:spring-boot
5.8
Medium
Ecosystem: Maven
Package: org.springframework.boot:spring-boot
FLAT-3O1KU (CVE-2026-40974)
Use of insecure channel - Source code In org.springframework.boot:spring-boot-cassandra
4.3
Medium
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-cassandra
FLAT-40XJ3 (CVE-2026-40976)
Improper authorization control for web services In org.springframework.boot:spring-boot
8.1
High
Ecosystem: Maven
Package: org.springframework.boot:spring-boot
FLAT-ERRZE (CVE-2026-40975)
Insecure generation of random numbers In org.springframework.boot:spring-boot-cassandra
1.7
Low
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-cassandra
FLAT-WY1EP (CVE-2026-40972)
Lack of data validation - Path Traversal In org.springframework.boot:spring-boot-devtools
6.1
Medium
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-devtools
FLAT-54UYX (CVE-2026-40971)
Insecure digital certificates In org.springframework.boot:spring-boot-rabbitmq
0.6
Low
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-rabbitmq
FLAT-GNWSK (CVE-2026-40970)
Insecure digital certificates In org.springframework.boot:spring-boot-elasticsearch
0.6
Low
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-elasticsearch
FLAT-DDZ89 (CVE-2026-22733)
Security controls bypass or absence In org.springframework.boot:spring-boot-starter-actuator
6.5
Medium
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-starter-actuator
FLAT-KOF0P (CVE-2026-22731)
Security controls bypass or absence In org.springframework.boot:spring-boot-starter-actuator
4.8
Medium
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-starter-actuator
FLAT-329GH (CVE-2017-8046)
Lack of data validation In org.springframework.boot:spring-boot-starter-data-rest
0.6
Low
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-starter-data-rest
FLAT-M2IZN (CVE-2025-22235)
Improper authorization control for web services In org.springframework.boot:spring-boot
2.7
Low
Ecosystem: Maven
Package: org.springframework.boot:spring-boot
FLAT-4R86L (CVE-2024-38807)
Insecure digital certificates In org.springframework.boot:spring-boot-loader-classic
4.1
Medium
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-loader-classic
FLAT-M2IRO (CVE-2023-34055)
Asymmetric denial of service In org.springframework.boot:spring-boot-actuator
2.7
Low
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-actuator
FLAT-BEDA7 (CVE-2023-20883)
Asymmetric denial of service In org.springframework.boot:spring-boot-autoconfigure
6.6
Medium
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-autoconfigure
FLAT-IDSKK (CVE-2023-20873)
Authentication mechanism absence or evasion In org.springframework.boot:spring-boot-actuator-autoconfigure
8.1
High
Ecosystem: Maven
Package: org.springframework.boot:spring-boot-actuator-autoconfigure
FLAT-WOLV0 (CVE-2022-27772)
Insecure temporary files In org.springframework.boot:spring-boot
4.4
Medium
Ecosystem: Maven
Package: org.springframework.boot:spring-boot
FLAT-F0E9R (CVE-2021-26987)
Server side template injection In org.springframework.boot:spring-boot
8.1
High
Ecosystem: Maven
Package: org.springframework.boot:spring-boot
FLAT-0G7ZF (CVE-2018-1196)
Insecure session management In org.springframework.boot:spring-boot
4.6
Medium
Ecosystem: Maven
Package: org.springframework.boot:spring-boot