CVE-2026-22731HIGH 8.1EPSS p25.1%

CVE-2026-22731CVE-2026-22731

Description

Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint that requires authentication is declared under a specific path, already configured for a Health Group additional path. This issue affects Spring Boot: from 4.0 before 4.0.3, from 3.5 before 3.5.11, from 3.4 before 3.4.15. This CVE is similar but not equivalent to CVE-2026-22733, as the conditions for exploit and vulnerable versions are different.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.33% probability of exploitation · percentile 25.1% · 2026-06-18T12:00:27Z
Published2026-03-19
Last modified2026-04-16

Underlying weaknesses· 2

CWE-288CWE-306

References

  1. https://spring.io/security/cve-2026-22731

2

TypeTargetConfidenceTier
WeaknessAuthentication Bypass Using an Alternate Path or Channelcwe-2880%live
WeaknessMissing Authentication for Critical Functioncwe-3060%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-22733
CVE
CVE-2026-40976
CVE
CVE-2026-22739
CVE
CVE-2026-41843
CVE
CVE-2026-41847
CVE
CVE-2026-22732
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.