Spring Framework: 6.1.21 → 6.1.28
VMware · upgrade impact · Official site ↗
Fixed by upgrading to 6.1.28 iVulnerabilities that affect 6.1.21 but no longer affect 6.1.28 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2026-22737 MEDIUM EPSS 0% ✓ cleared in 6.1.28 CVE-2026-22735 LOW EPSS 0% ✓ cleared in 6.1.28 CVE-2026-22741 LOW EPSS 0% ✓ cleared in 6.1.28 CVE-2026-22745 MEDIUM EPSS 0% ✓ cleared in 6.1.28 CVE-2026-22740 MEDIUM EPSS 0% ✓ cleared in 6.1.28 CVE-2026-41843 MEDIUM EPSS 0% ✓ cleared in 6.1.28 CVE-2026-41842 HIGH EPSS 0% ✓ cleared in 6.1.28 CVE-2026-41840 MEDIUM EPSS 0% ✓ cleared in 6.1.28 CVE-2026-41841 MEDIUM EPSS 0% ✓ cleared in 6.1.28 CVE-2026-41850 HIGH EPSS 0% ✓ cleared in 6.1.28 CVE-2026-41851 MEDIUM EPSS 0% ✓ cleared in 6.1.28