HarborGuardharborguardDatabase
Back to search
HIGHCVE-2026-40999Published Modified CNA vmware

CVE-2026-40999: Spring WS SSRF via unvalidated WS-Addressing reply destinations

When WS-Addressing is used with non-anonymous ReplyTo or FaultTo addresses, Spring WS may initiate outbound connections through configured WebServiceMessageSender instances to destinations taken directly from request headers without verifying that those destinations are safe to connect to. Affected versions: Spring Web Services 5.0.0 through 5.0.1; 4.1.0 through 4.1.3; 4.0.0 through 4.0.18; 3.1.0 through 3.1.8.

Metrics

CVSS v3.1
8.6
Severity
HIGH
Fixed in
3.1.9
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

Server-Side Request Forgery (SSRF) in Spring Web Services allows a remote, unauthenticated attacker to make the affected server initiate outbound HTTP connections to arbitrary destinations. The vulnerability is reachable over the network with no authentication required and no user interaction needed; an attacker supplies a malicious ReplyTo or FaultTo address in a WS-Addressing header, and Spring WS blindly follows it. Successful exploitation lets the attacker probe or interact with internal network resources that the server can reach, potentially exposing sensitive data from those internal services. Patched-image rebuilds at versions 3.1.9, 4.0.19, 4.1.4, and 5.0.2 are available on HarborGuard for environments running affected versions.

HarborGuard Coverage

Detection

Detection of CVE-2026-40999 is available across every HarborGuard environment; the CVE is matched against customer images within minutes of ingestion from upstream advisory feeds, covering both base images and custom-built images that bundle Spring Web Services. Any image in a connected registry or CI pipeline that contains an affected version of Spring WS is flagged automatically.

Available
Triage

HarborGuard scores this CVE at CVSS 8.6 HIGH and weights it against each environment's configured compliance policy, escalating findings where the policy treats network-reachable SSRF as a priority class. Routed findings land in the inbox of the team or role designated for that registry or workload inside each customer org.

Available
Patch

A patched-image rebuild at the appropriate fix version (3.1.9, 4.0.19, 4.1.4, or 5.0.2, depending on the branch in use) becomes available in HarborGuard as soon as the fix is confirmed against the affected image. For customers who opt into auto-remediation, HarborGuard triggers a rebuild, runs a regression test suite against the new image, and opens a pull request against the affected workload manifests.

Available

Exploit Conditions

  • Network reachabilityRequired

    The attacker must be able to send a crafted SOAP request over the network to the exposed Spring WS endpoint.

  • AuthenticationNot required

    No credentials or session token are needed; the malicious WS-Addressing header is accepted from any unauthenticated request.

  • Victim interactionNot required

    Exploitation is fully automated from the attacker side and requires no action from any user or operator on the target system.

  • Attack complexityDetail

    Attack complexity is low; the exploit is reliable and requires no special preconditions, race conditions, or knowledge of the target environment beyond a reachable endpoint.

Blast Radius

  • The attacker can direct the server to issue outbound HTTP or HTTPS requests to arbitrary internal IP addresses or hostnames, effectively using the server as a proxy into the internal network.
  • Internal services that trust requests from the application server (cloud metadata endpoints, internal APIs, database admin UIs) become reachable by the attacker without direct network access.
  • Confidential data returned by those internal services, such as cloud instance credentials from metadata APIs or tokens from internal auth services, is exposed to the attacker via the forged reply path.
  • Confidentiality impact is rated HIGH by the CVSS score; integrity and availability of the vulnerable service itself are not directly affected by this exploit path.

How HarborGuard Handles This

Available on HarborGuard: images containing affected Spring Web Services versions are detected automatically and matched to fix versions 3.1.9, 4.0.19, 4.1.4, and 5.0.2 within minutes of CVE publication. For customers who opt into auto-remediation, HarborGuard rebuilds the image at the correct fix branch, runs a regression test, and opens a PR against affected workloads; for HIGH-severity issues the median time from CVE publication to merged patch PR is around 90 minutes in environments with auto-remediation enabled. Where compliance policy permits, network-policy controls can be applied as a compensating control in the interim: egress filtering rules that restrict the application server to a known-good set of outbound destinations will neutralize the SSRF vector even before the patched image is deployed. Customers should prioritize images exposed on public or semi-trusted network segments, since no authentication is required to trigger the vulnerability.

See how HarborGuard automates this

Fix available

3.1.94.0.194.1.45.0.2
Affected packages
  • Spring / Spring Web Services
    < 5.0.2 (from 5.0.0) · < 4.1.4 (from 4.1.0) · < 4.0.19 (from 4.0.0) · < 3.1.9 (from 3.1.0)
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
References