← voltar
CVE-2026-40983

Micrometer gRPC server instrumentation DoS vulnerability

CVSS 7.5 HIGHEPSS 0.3%CWE-400
In Micrometer, it is possible for a user to provide specially crafted gRPC requests that may cause a denial-of-service (DoS) condition. Affected versions: Micrometer 1.16.0 through 1.16.5; 1.15.0 through 1.15.11.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Produtos afetados
Spring · Micrometer

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://spring.io/security/cve-2026-40983