Lucene search
K

K000162183: Spring web services vulnerability CVE-2026-40996

šŸ—“ļøĀ 10 Jul 2026Ā 08:19:38Reported byĀ f5TypeĀ 
f5
Ā f5
šŸ”—Ā my.f5.comšŸ‘Ā 3Ā Views

Spring web services CVE-2026-40996 allows rsa-1_5 key transport via Wss4jSecurityInterceptor; no F5 products affected.

Related
ReporterTitlePublishedViews
Family
Circl
CVE-2026-40996
11 Jun 202612:40
–circl
CNNVD
VMware Spring Web Services åŠ åÆ†é—®é¢˜ę¼ę“ž
11 Jun 202600:00
–cnnvd
CVE
CVE-2026-40996
11 Jun 202605:04
–cve
Cvelist
CVE-2026-40996 Inbound WS-Security allows RSA PKCS#1 v1.5 key transport by default
11 Jun 202605:04
–cvelist
EUVD
EUVD-2026-36206
11 Jun 202605:04
–euvd
NVD
CVE-2026-40996
11 Jun 202607:16
–nvd
Positive Technologies
PT-2026-48619
11 Jun 202600:00
–ptsecurity
Snyk
Use of RSA Algorithm without OAEP
10 Jun 202600:00
–snyk
Spring Security Advisories
CVE-2026-40996: Inbound WS-Security allows RSA PKCS#1 v1.5 key transport by default
10 Jun 202600:00
–spring
Veracode
Weak Cryptography
16 Jun 202606:52
–veracode
Rows per page

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

10 Jul 2026 08:19Current
6.1Medium risk
Vulners AI Score6.1
CVSS 3.14.8
EPSS0.00129
SSVC
3