CVE-2026-41838 | Vmware Spring Framework up to 5.3.48/6.1.27/6.2.18/7.0.7 Spring-Websocket random values
A vulnerability labeled as problematic has been found in Vmware Spring Framework up to 5.3.48/6.1.27/6.2.18/7.0.7. This impacts an unknown function of the component Spring-Websocket Module. Executing a manipulation can lead to insufficiently random values.
This vulnerability is registered as CVE-2026-41838. It is possible to launch the attack remotely. No exploit is available.
The affected component should be upgraded.