CVE-2026-22740

NONE0.0EPSS 0.06%

Spring Framework DoS with Multipart Temp Files in WebFlux

Published: 4/29/2026Modified: 5/13/2026

Description

A WebFlux server application that processes multipart requests creates temp files for parts larger than 10 K. Under some circumstances, temp files may remain not deleted after the request is fully processed. This allows an attacker to consume available disk space. Older, unsupported versions are also affected.

Affected packages (2)

Debian/libspring-javafrom 0
Maven/org.springframework:spring-webflux>= 7.0.0, < 7.0.7

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	NONE0.0	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N

References (4)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2026-22740
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2026-22740
PATCHhttps://github.com/spring-projects/spring-framework
WEBhttps://spring.io/security/cve-2026-22740