CVE-2026-22740: CWE-400 Uncontrolled Resource Consumption in VMware Spring Framework
A WebFlux server application that processes multipart requests creates temp files for parts larger than 10 K. Under some circumstances, temp files may remain not deleted after the request is fully processed. This allows an attacker to consume available disk space. Older, unsupported versions are also affected.
AI Analysis
Technical Summary
The vulnerability CVE-2026-22740 in VMware Spring Framework arises from improper cleanup of temporary files created during multipart request processing in WebFlux server applications. Specifically, temp files for parts exceeding 10 KB may remain undeleted after the request is fully processed, enabling an attacker to consume disk space and cause a denial of service condition. Affected versions include 5.3.0, 6.1.0, 6.2.0, and 7.0.0. The CVSS 3.1 base score is 6.5, reflecting a medium severity with network attack vector, low attack complexity, requiring low privileges, no user interaction, unchanged scope, no confidentiality or integrity impact, but high availability impact. No vendor advisory or patch information is currently available.
Potential Impact
An attacker can exploit this vulnerability to cause uncontrolled resource consumption by filling disk space with undeleted temporary files, potentially leading to denial of service due to lack of available disk space. There is no impact on confidentiality or integrity reported.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, consider monitoring disk usage closely on affected systems and implementing application-level controls to limit multipart request sizes or clean up temp files manually if possible.
CVE-2026-22740: CWE-400 Uncontrolled Resource Consumption in VMware Spring Framework
Description
A WebFlux server application that processes multipart requests creates temp files for parts larger than 10 K. Under some circumstances, temp files may remain not deleted after the request is fully processed. This allows an attacker to consume available disk space. Older, unsupported versions are also affected.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability CVE-2026-22740 in VMware Spring Framework arises from improper cleanup of temporary files created during multipart request processing in WebFlux server applications. Specifically, temp files for parts exceeding 10 KB may remain undeleted after the request is fully processed, enabling an attacker to consume disk space and cause a denial of service condition. Affected versions include 5.3.0, 6.1.0, 6.2.0, and 7.0.0. The CVSS 3.1 base score is 6.5, reflecting a medium severity with network attack vector, low attack complexity, requiring low privileges, no user interaction, unchanged scope, no confidentiality or integrity impact, but high availability impact. No vendor advisory or patch information is currently available.
Potential Impact
An attacker can exploit this vulnerability to cause uncontrolled resource consumption by filling disk space with undeleted temporary files, potentially leading to denial of service due to lack of available disk space. There is no impact on confidentiality or integrity reported.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, consider monitoring disk usage closely on affected systems and implementing application-level controls to limit multipart request sizes or clean up temp files manually if possible.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- vmware
- Date Reserved
- 2026-01-09T06:54:49.675Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69f2b622cbff5d86107b234f
Added to database: 4/30/2026, 1:53:38 AM
Last enriched: 4/30/2026, 1:54:49 AM
Last updated: 4/30/2026, 3:07:17 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.