CVE-2026-41730— Spring Data REST exposes persistence-layer internals in error responses
Possible ATT&CK Techniques 1AI
T1530 · Data from Cloud StorageAffected Version Matrix 5
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Spring | Spring Data REST | 3.7.0< 3.7.20 | affected |
4.3.0< 4.3.17 | affected | ||
4.4.0< 4.4.15 | affected | ||
4.5.0< 4.5.12 | affected | ||
5.0.0< 5.0.6 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-41730
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Spring Data REST exposes persistence-layer internals in error responses
Source: NVD (National Vulnerability Database)
Vulnerability Description
Spring Data REST serializes the full exception cause chain into HTTP error response bodies, potentially exposing persistence-layer internals to HTTP clients. Affected versions: Spring Data REST 3.7.0 through 3.7.19; 4.3.0 through 4.3.16; 4.4.0 through 4.4.14; 4.5.0 through 4.5.11; 5.0.0 through 5.0.5.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
通过错误消息导致的信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
VMware Spring Data REST 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
VMware Spring Data REST是美国威睿(VMware)公司的一种数据接口。用于构建在 Spring Data 存储库之上,分析应用程序的域模型,并为模型中包含的聚合公开超媒体驱动的 HTTP 资源。 VMware Spring Data REST 3.7.0及之前版本、4.3.0及之前版本、4.4.0及之前版本、4.5.0及之前版本和5.0.0及之前版本存在安全漏洞,该漏洞源于将完整异常原因链序列化到HTTP错误响应体中,可能导致持久层内部信息泄露。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Spring | Spring Data REST | 3.7.0 ~ 3.7.20 | - |
II. Public POCs for CVE-2026-41730
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-41730
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-41730 (1)
Same Patch Batch · Spring · 2026-06-09 · 51 CVEs total
| CVE-2026-41717 | 8.1 HIGH | Spring Data MongoDB - SpEL Expression Injection via Annotated Query Parameter Binding |
| CVE-2026-41732 | 8.1 HIGH | In Spring for Apache Pulsar, overly broad trusted-package matching in header mapper expose |
| CVE-2026-41855 | 8.1 HIGH | Spring Framework Unsafe Deserialization via Jackson JMS Converters |
| CVE-2026-41729 | 8.1 HIGH | Spring Data REST SpEL Injection via Map Key in JSON Patch |
| CVE-2026-41731 | 8.1 HIGH | In Spring for Apache Kafka, overly broad trusted-package matching in header mappers expose |
| CVE-2026-41003 | 7.6 HIGH | Unencoded HTML Outputs in Spring Security May Allow Cross-Site Scripting |
| CVE-2026-41728 | 7.5 HIGH | Spring Data REST JSON Patch bypasses Jackson read-only property protection on nested objec |
| CVE-2026-40983 | 7.5 HIGH | Micrometer gRPC server instrumentation DoS vulnerability |
| CVE-2026-40984 | 7.5 HIGH | Micrometer HTTP server instrumentations DoS vulnerability |
| CVE-2026-40988 | 7.5 HIGH | Unbounded DEFLATE Inflation in SAML 2.0 Service Provider |
| CVE-2026-41850 | 7.5 HIGH | Spring Framework Algorithmic Denial of Service via SpEL Expressions |
| CVE-2026-41716 | 7.5 HIGH | Spring Data web support unbounded negative-result cache keyed on attacker-supplied propert |
| CVE-2026-41695 | 7.5 HIGH | Denial of Service in Spring Data Commons Property Path Resolution |
| CVE-2026-41849 | 7.5 HIGH | Spring Framework Denial of Service via Integer Overflow in SpEL Expressions |
| CVE-2026-41007 | 7.5 HIGH | Spring HATEOAS heap exhaustion through unbounded internal caching |
| CVE-2026-41006 | 7.5 HIGH | Spring HATEOAS Collection+JSON/UBER deserializers do not honor Jackson configuration |
| CVE-2026-41842 | 7.5 HIGH | Spring Framework Denial of Service via Versioned Resources in Spring MVC and WebFlux |
| CVE-2026-41720 | 7.4 HIGH | Authentication Bypass with Empty Password in Spring LDAP |
| CVE-2026-40993 | 7.3 HIGH | Unfiltered Java Native Deserialization of SAML 2.0 Asserting Party Credentials BLOB Databa |
| CVE-2026-41845 | 7.1 HIGH | Spring Framework Cross-site Scripting via JavaScriptUtils |
Showing top 20 of 51 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Spring Data REST
- CVE-2026-41837
Spring Data REST Querydsl integration exposes Jackson-hidden - CVE-2026-41729
Spring Data REST SpEL Injection via Map Key in JSON Patch - CVE-2026-41728
Spring Data REST JSON Patch bypasses Jackson read-only prope - CVE-2022-31679
VMware Spring Data REST 安全漏洞 - CVE-2021-22047
VMware Spring Security 安全漏洞
Same vendor: Spring
- CVE-2026-47825
Spring Cloud Gateway Server Forwards Headers from Untrusted - CVE-2026-41708
Spring Cloud Sleuth instrumentation of Spring TX DoS vulnera - CVE-2026-47835
Spring AI vector store metadata filtering to handle special - CVE-2026-41856
Spring GraphQL Annotation Detection Vulnerability - CVE-2026-41700
Cross-Site WebSocket Hijacking in Spring for GraphQL
Same weakness: CWE-209
- CVE-2025-59872
HCL ZIE for Web is affetced by an Unrestricted File Upload v - CVE-2026-47248
Parse Server: GraphQL "Did you mean" validation suggestions - CVE-2026-40997
SOAP security faults leak Spring Security account state - CVE-2025-52606
HCL iControl was affected by Weak Input Validation vulnerabi - CVE-2025-52611
HCL iControl was affected by Unhandled Exception - Stack Tra
V. Comments for CVE-2026-41730
No comments yet