CVE-2026-41717 | Vmware Spring Data MongoDB up to 5.0.5 Spring Expression Language expression language injection

A vulnerability classified as problematic has been found in Vmware Spring Data MongoDB up to 5.0.5. This issue affects some unknown processing of the component Spring Expression Language Handler. This manipulation causes improper neutralization of special elements used in an expression language statement.

This vulnerability appears as CVE-2026-41717. The attack may be initiated remotely. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More