CRITICAL
Spring Security
CVE published 2026-07-16
CVE-2026-22752
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-16T10:16:24.767Z and has not been modified since then. CVE-2026-22752 is an authentication bypass by primary weakness vulnerability in Spring Security Spring Authorization Server. The issue affects multiple versions of Spring Authorization Server, including 7.0.0 through 7.0.4, 1.5.0 through 1.5.6, [truncated]