CVE-2026-22753 - Servlet Path Not Correctly Included in Path Matching of HttpSecurity#securityMatchers
CVE ID :CVE-2026-22753 Published : April 22, 2026, 6:16 a.m. | 44 minutes ago Description :Vulnerability in Spring Spring Security. If an application is using securityMatchers(String) and a PathPatternRequestMatcher.Builder bean to prepend a servlet path, matching requests to that filter chain
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] 🔒 leak bazaar: Millennium
- [CYBER] ATT data vendor breach 4/2026
- [CYBER] Ransomware negotiator recruited by BlackCat ransomware gang pleads guilty to 2023 attacks, faces 20 years in prison
- [CYBER] iOS 26.4.2 Patches Flaw That Let FBI Extract Deleted Signal Messages
- [CYBER] Novel vulnerability in breast cancer brain metastases identified, pointing to new therapeutic strategy
- [CYBER] Kyber ransomware gang toys with post-quantum encryption on Windows