CVE-2026-40993
Unfiltered Java Native Deserialization of SAML 2.0 Asserting Party Credentials BLOB Database Entry
CVSS Score
7.3
EPSS Score
0.0%
EPSS Percentile
0th
An attacker with write permissions to the database table managed by JdbcAssertingPartyMetadataRepository (saml2_asserting_party_metadata) may be able to store malicious serialized payloads in the columns containing the collection of verification or encryption credentials (verification_credentials and encryption_credentials, respectively). Affected versions: Spring Security 7.0.0 through 7.0.5.
| CWE | CWE-502 |
| Vendor | spring |
| Product | spring security |
| Ecosystems | |
| Industries | TechnologyEnterprise |
| Published | Jun 9, 2026 |
Stay Ahead of the Next One
Get instant alerts for spring spring security
Be the first to know when new high vulnerabilities affecting spring spring security are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:H Attack Vector
Adjacent
Attack Complexity
High
Privileges Required
High
User Interaction
None
Scope
Changed
Confidentiality
None
Integrity
High
Availability
High
Affected Versions
Spring / Spring Security
7.0.0 < 7.0.6