{"uuid": "957d540f-dbcb-4347-9a14-7eb43d517a2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40982", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116531411462780607", "content": "\u26a0\ufe0f CRITICAL: CVE-2026-40982 in Spring Cloud Config (3.1.0 \u2013 5.0.0) enables path traversal \u2014 attackers can access arbitrary files via crafted URLs. Upgrade to a safe version ASAP: 3.1.14, 4.1.10, 4.2.7, 4.3.3, or 5.0.3. Details: https://radar.offseq.com/threat/cve-2026-40982-cwe-22-improper-limitation-of-a-pat-df996457 #OffSeq #SpringCloud #CVE202640982", "creation_timestamp": "2026-05-07T04:30:27.681922Z"}