CVE-2026-41839 | Vmware Spring Framework up to 5.3.48/6.1.27/6.2.18/7.0.7 WebFlux session fixiation

SecurityVulns

A vulnerability was found in Vmware Spring Framework up to 5.3.48/6.1.27/6.2.18/7.0.7. It has been classified as critical. The impacted element is an unknown function of the component WebFlux. This manipulation causes session fixiation.

The identification of this vulnerability is CVE-2026-41839. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More