Bug 2449290 (CVE-2026-22731) - CVE-2026-22731 Spring Boot: Spring Boot: Authentication bypass via misconfigured Health Group additional path
Summary: CVE-2026-22731 Spring Boot: Spring Boot: Authentication bypass via misconfigu...
Keywords:
Status: NEW
Alias: CVE-2026-22731
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2449641 2449642 2449643
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-03-19 23:03 UTC by OSIDB Bzimport
Modified: 2026-03-20 15:27 UTC (History)
50 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2026-03-19 23:03:01 UTC 
Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability when an application endpoint that requires authentication is declared under a specific path, already configured for a Health Group additional path.
This issue affects Spring Boot: from 4.0 before 4.0.3, from 3.5 before 3.5.11, from 3.4 before 3.4.15.
This CVE is similar but not equivalent to CVE-2026-22733, as the conditions for exploit and vulnerable versions are different.
Note You need to log in before you can comment on or make changes to this bug.