CVE-2026-22754 | THREATINT

Description

Vulnerability in Spring Spring Security. If an application uses <sec:intercept-url servlet-path="/servlet-path" pattern="/endpoint/**"/> to define the servlet path for computing a path matcher, then the servlet path is not included and the related authorization rules are not exercised. This can lead to an authorization bypass.This issue affects Spring Security: from 7.0.0 through 7.0.4.

PUBLISHED Reserved 2026-01-09 | Published 2026-04-22 | Updated 2026-04-22 | Assigner vmware

HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Product status

Default status

unaffected

7.0.0 (custom)

affected

References

spring.io/security/cve-2026-22754

cve.org (CVE-2026-22754)

nvd.nist.gov (CVE-2026-22754)

Download JSON