CVE-2026-40987 | Vmware Spring Integration up to 7.0.4 /SFTP/SMB path traversal

A vulnerability described as critical has been identified in Vmware Spring Integration up to 5.5.20/6.3.14/6.4.11/6.5.8/7.0.4. The affected element is an unknown function of the file /SFTP/SMB. Executing a manipulation can lead to path traversal.

The identification of this vulnerability is CVE-2026-40987. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More