CVE-2026-41849

Same vendor

• CVE-2026-41851 — Applications which accept user-supplied Spring Expression Language (SpEL) expressions may be vulnerable to a Denial of Service (DoS) atta... (5.3 MEDIUM)
• CVE-2026-41850 — Applications that evaluate user-supplied Spring Expression Language (SpEL) expressions are vulnerable to an Algorithmic Denial of Service... (7.5 HIGH)
• CVE-2026-41843 — Spring MVC and WebFlux applications are vulnerable to Path Traversal attacks when resolving static resources (5.9 MEDIUM)
• CVE-2026-41842 — Spring MVC and WebFlux applications are vulnerable to Denial of Service (DoS) attacks when resolving static resources (7.5 HIGH)
• CVE-2026-41841 — Spring MVC and WebFlux applications are vulnerable to Information Disclosure attacks when resolving static resources (5.9 MEDIUM)

Same CWE

• CVE-2025-66280 — An integer overflow or wraparound vulnerability has been reported to affect several QNAP operating system versions
• CVE-2026-34711 — CAI Content Credentials versions c2pa-web@0.7.1, c2pa-v0.80.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability (7.5 HIGH)
• CVE-2026-47925 — Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could... (5.5 MEDIUM)
• CVE-2023-29146 — The utility functions used by Malwarebytes EDR 1.0.11 on Linux for calculating a cryptographic hash of data bytes truncate the hashed dat... (8.2 HIGH)
• CVE-2026-47291 — Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network (9.8 CRITICAL)