CVE-2026-41728 | Vmware Spring Data REST up to 5.0.5 access control

A vulnerability was found in Vmware Spring Data REST up to 3.7.19/4.3.16/4.4.14/4.5.11/5.0.5. It has been classified as critical. Affected is an unknown function. This manipulation causes improper access controls.

The identification of this vulnerability is CVE-2026-41728. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More