Spring Security: 6.3.10 → 6.3.17
VMware · upgrade impact · Official site ↗
Fixed by upgrading to 6.3.17 iVulnerabilities that affect 6.3.10 but no longer affect 6.3.17 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2026-22732 CRITICAL EPSS 0% ✓ cleared in 6.3.17 CVE-2026-40988 HIGH EPSS 0% ✓ cleared in 6.3.17 CVE-2026-22746 LOW EPSS 0% ✓ cleared in 6.3.17 CVE-2026-22748 MEDIUM EPSS 0% ✓ cleared in 6.3.17 CVE-2026-41003 HIGH EPSS 0% ✓ cleared in 6.3.17 CVE-2026-41694 LOW EPSS 0% ✓ cleared in 6.3.17