CVE-2026-22731
Description
Spring Boot applications with Actuator can be vulnerable to an Authentication Bypass vulnerability when an application endpoint that requires authentication is declared under a specific path, already configured for a Health Group additional path.This issue affects Spring Boot: from 4.0 before 4.0.3, from 3.5 before 3.5.11, from 3.4 before 3.4.15.This CVE is similar but not equivalent to CVE-2026-22733, as the conditions for exploit and vulnerable versions are different.
Risk Information
Base Score
8.2
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
EPSS Score
Exploitation Probability
0.049
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2026-22731,CVE-2026-22733 are affected in Spring - spring-boot-starter-actuator 3.4.13 | Windows |
| Vulnerabilities CVE-2026-22731,CVE-2026-22733 are fixed in Spring - spring-boot-starter-actuator 3.5.12 | Windows |
| Vulnerabilities CVE-2026-22731,CVE-2026-22733 are fixed in Spring - spring-boot-starter-actuator 4.0.4 | Windows |
| Vulnerabilities CVE-2026-22731,CVE-2026-22733 are affected in Spring - spring-boot-starter-actuator for Linux 3.4.13 | Linux |
| Vulnerabilities CVE-2026-22731,CVE-2026-22733 are fixed in Spring - spring-boot-starter-actuator for Linux 3.5.12 | Linux |
| Vulnerabilities CVE-2026-22731,CVE-2026-22733 are fixed in Spring - spring-boot-starter-actuator for Linux 4.0.4 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234