CVE-2026-22748 - Potential Security Misconfiguration when Using withIssuerLocation
CVE ID :CVE-2026-22748 Published : April 22, 2026, 6:16 a.m. | 44 minutes ago Description :Vulnerability in Spring Spring Security. When an application configures JWT decoding with NimbusJwtDecoder or NimbusReactiveJwtDecoder, it must configure an OAuth2TokenValidator separately, for example
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] 🔒 pear: Kinsmen TeleMiracle
- [CYBER] New GoGra malware for Linux uses Microsoft Graph API for comms
- [CYBER] Mirai Botnet Targets Flaw in Discontinued D-Link Routers
- [CYBER] France's 'Secure' ID agency probes breach as crooks claim 19M records
- [CYBER] Progress Software fixes sneaky WAF bypass vulnerability (CVE-2026-21876)
- [CYBER] Guidance on Certifications