Known Vulnerabilities for Spring Data Rest by Vmware
Listed below are 9 of the newest known vulnerabilities associated with "Spring Data Rest" by "Vmware".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41837 json | Spring Data REST's Querydsl integration accepts arbitrary persistent property paths as request-parameter filter keys and does... | Not Provided | 2026-06-10 | 2026-06-10 |
| CVE-2026-41730 json | Spring Data REST serializes the full exception cause chain into HTTP error response bodies, potentially exposing persistence-... | Not Provided | 2026-06-10 | 2026-06-10 |
| CVE-2026-41729 json | Spring Data REST is vulnerable to SpEL expression injection through map-typed properties when processing JSON Patch (applicat... | Not Provided | 2026-06-10 | 2026-06-11 |
| CVE-2026-41728 json | Spring Data REST's JSON Patch (application/json-patch+json) implementation does not apply the write-access filter to intermed... | Not Provided | 2026-06-10 | 2026-06-10 |
| CVE-2022-31679 json | Applications that allow HTTP PATCH access to resources exposed by Spring Data REST in versions 3.6.0 - 3.5.5, 3.7.0 - 3.7.2, ... | 3.7 - LOW | 2022-09-21 | 2022-09-22 |
| CVE-2021-22047 json | In Spring Data REST versions 3.4.0 - 3.4.13, 3.5.0 - 3.5.5, and older unsupported versions, HTTP resources implemented by cus... | 5.3 - MEDIUM | 2021-10-28 | 2021-11-01 |
| CVE-2018-1273 json | Not Provided | 2018-04-11 | 2026-06-26 | |
| CVE-2018-1259 json | Not Provided | 2018-05-11 | 2026-06-26 | |
| CVE-2017-8046 json | Not Provided | 2018-01-04 | 2026-06-26 |