CVE-2026-41008

MEDIUM

Spring Security Authorization Server Open Redirect via request_uri

Title source: cna

Description

Spring Security Authorization Server's authorization endpoint performs insufficient validation of the request_uri parameter. An attacker can craft a malicious authorization request containing an invalid request_uri and an arbitrary, unvalidated redirect_uri, which can lead to an Open Redirect vulnerability. Affected versions: Spring Security 7.0.0 through 7.0.5. Spring Authorization Server 1.5.0 through 1.5.7.

References (1)

Core 1

Core References

https://spring.io/security/cve-2026-41008

Scores

CVSS v3 6.1

EPSS 0.0017

EPSS Percentile 6.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-601

Status published

Products (2)

Spring/Spring Authorization Server 1.5.0 - 1.5.8

Spring/Spring Security 7.0.0 - 7.0.6

Published Jun 10, 2026

Tracked Since Jun 10, 2026