CyberRota
← Ana sayfaya dön

CVE-2026-41839

MEDIUM · CVSS 4.2 EPSS %0.20

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-09T05:16:35.850 · Çekilme zamanı: 2026-06-30T12:13:28.660106+00:00

CyberRota Yorumu

Saldırganın giriş yapmış olması gerekebilir.

CVE
CVE-2026-41839
Severity
MEDIUM
CVSS
4.2
EPSS
%0.20

Orijinal NVD Açıklaması

A WebFlux application with a compromised subdomain (for example, compromised via cross-site scripting (XSS)) is vulnerable to an escalation attack exchanging a known session ID for that of an authenticated user. Affected versions: Spring Framework 7.0.0 through 7.0.7; 6.2.0 through 6.2.18; 6.1.0 through 6.1.27; 5.3.0 through 5.3.48.