CVE-2026-22747 | THREATINT

Description

Vulnerability in Spring Spring Security. SubjectX500PrincipalExtractor does not correctly handle certain malformed X.509 certificate CN values, which can lead to reading the wrong value for the username. In a carefully crafted certificate, this can lead to an attacker impersonating another user. This issue affects Spring Security: from 7.0.0 through 7.0.4.

PUBLISHED Reserved 2026-01-09 | Published 2026-04-22 | Updated 2026-04-23 | Assigner vmware

MEDIUM: 6.8CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Product status

Default status

unaffected

7.0.0 (custom)

affected

References

spring.io/security/cve-2026-22747

cve.org (CVE-2026-22747)

nvd.nist.gov (CVE-2026-22747)

Download JSON