CVE-2026-41696 | Vmware Spring Data MongoDB up to 5.0.5 String data query logic injection

A vulnerability was found in Vmware Spring Data MongoDB up to 5.0.5. It has been rated as problematic. The affected element is an unknown function of the component String Handler. The manipulation leads to improper neutralization of special elements in data query logic.

This vulnerability is listed as CVE-2026-41696. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More