Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
Maven/org.springframework.cloud:spring-cloud-config-server — 8 CVEs · VulnScope
pkg:Maven/
org.springframework.cloud:spring-cloud-config-server
8 total CVEs
CRITICAL
1
HIGH
4
MEDIUM
3
✅ Check your installed version
Check
All known vulnerabilities
HIGH
7.5
CVE-2020-5410
⚠ KEV
Directory traversal attack in Spring Cloud Config
>= 2.1.0, < 2.1.9
CRITICAL
9.1
CVE-2026-40982
Spring Cloud Config vulnerable to Path Traversal
>= 3.1.0, <= 3.1.13
HIGH
8.6
Spring Cloud Config Server: Path Traversal via Profile Parameter Allows Arbitrary File Access
>= 4.3.0, < 4.3.2
HIGH
7.5
Spring Cloud Config has an Authorization Bypass Through User-Controlled Key
>= 3.1.0, <= 3.1.13
HIGH
7.2
Spring Cloud Config Server Susceptible To TOCTOU Attack
>= 3.1.0, <= 3.1.13
MEDIUM
6.5
Directory traversal attack in Spring Cloud Config
>= 2.1.0, < 2.1.7
MEDIUM
6.5
Path Traversal in Spring Cloud Config
from 0, < 1.4.6
MEDIUM
4.4
Spring Cloud Config Server Logged Sensitive Information
>= 3.1.0, <= 3.1.13
CVE-2026-22739
CVE-2026-40981
CVE-2026-41002
CVE-2020-5405
CVE-2019-3799
CVE-2026-41004