Spring Boot: 2.6.15 → 2.7.33
VMware · upgrade impact · Official site ↗
Fixed by upgrading to 2.7.33 iVulnerabilities that affect 2.6.15 but no longer affect 2.7.33 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2026-22733 HIGH EPSS 0% ✓ cleared in 2.7.33 CVE-2026-40972 HIGH EPSS 0% ✓ cleared in 2.7.33 CVE-2026-40975 MEDIUM EPSS 0% ✓ cleared in 2.7.33 CVE-2026-40973 HIGH EPSS 0% ✓ cleared in 2.7.33 CVE-2026-40977 MEDIUM EPSS 0% ✓ cleared in 2.7.33