CVE-2026-41731 | Vmware Spring for Apache Kafka up to 4.0.5 Header deserialization

A vulnerability, which was classified as problematic, was found in Vmware Spring for Apache Kafka up to 2.8.11/2.9.13/3.2.13/3.3.15/4.0.5. The impacted element is an unknown function of the component Header Handler. Executing a manipulation can lead to deserialization.

This vulnerability is handled as CVE-2026-41731. The attack can be executed remotely. There is not any exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More