Spring Boot: 2.2.13 → 2.7.33
VMware · upgrade impact · Official site ↗
Fixed by upgrading to 2.7.33 iVulnerabilities that affect 2.2.13 but no longer affect 2.7.33 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2023-20873 CRITICAL EPSS 1% ✓ cleared in 2.7.33 CVE-2023-20883 HIGH EPSS 1% ✓ cleared in 2.7.33 CVE-2026-22733 HIGH EPSS 0% ✓ cleared in 2.7.33 CVE-2026-40972 HIGH EPSS 0% ✓ cleared in 2.7.33 CVE-2026-40975 MEDIUM EPSS 0% ✓ cleared in 2.7.33 CVE-2026-40973 HIGH EPSS 0% ✓ cleared in 2.7.33 CVE-2026-40977 MEDIUM EPSS 0% ✓ cleared in 2.7.33