CVE-2026-40975 | Vmware Spring Boot up to 4.0.5 ${random.value} random values

A vulnerability was found in Vmware Spring Boot up to 2.7.32/3.3.18/3.4.15/3.5.13/4.0.5. It has been classified as problematic. This affects an unknown part. Performing a manipulation of the argument ${random.value} results in insufficiently random values.

This vulnerability is cataloged as CVE-2026-40975. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More