Spring Boot
CVE-2026-40975
HIGH
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Confidentiality-only impact with no patch-side privilege need, but AC:H because exploitation depends on the app using these placeholders for secrets and on predicting a weak PRNG.
Primary rating from NVD.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
10Blast Radius
ecosystem impact- 16 maven packages depend on org.springframework.boot:spring-boot-cassandra (5 direct, 11 indirect)
Ecosystem-wide dependent count for version 4.0.0.
DescriptionNVD
Values produced by ${random.value} are not suitable for use as secrets. ${random.uuid} is not affected. ${random.int} and ${random.long} should never be used for secrets as they are numeric values with a predictable range.
Affected: Spring Boot 4.0.0-4.0.5 (fix 4.0.6), 3.5.0-3.5.13 (fix 3.5.14), 3.4.0-3.4.15 (fix 3.4.16), 3.3.0-3.3.18 (fix 3.3.19), 2.7.0-2.7.32 (fix 2.7.33); random value property source / weak PRNG for secrets. Versions that are no longer supported are also affected per vendor advisory.
AnalysisAI
{random.value} property placeholder are generated with a non-cryptographic pseudo-random number generator, making them unsuitable for use as secrets such as passwords, tokens, or keys. The numeric ${random.int} and ${random.long} placeholders are even weaker, drawing from a small predictable range, while ${random.uuid}` is explicitly unaffected. There is no public exploit identified at time of analysis (SSVC exploitation: none; EPSS 0.03%), so the practical risk depends entirely on whether a given deployment actually used these placeholders to seed real secrets.
Technical ContextAI
Spring Boot's RandomValuePropertySource resolves ${random.*} placeholders in application.properties/application.yml and is backed by java.util.Random, a linear congruential generator that is statistically predictable and not seeded with cryptographic entropy. This is a textbook CWE-330 (Use of Insufficiently Random Values) issue: the root cause is the misuse of a general-purpose PRNG where a CSPRNG (e.g., java.security.SecureRandom) is required. The affected CPE is cpe:2.3:a:vmware:spring_boot across the listed version ranges. ${random.int} and ${random.long} compound the weakness by returning numeric values within a bounded, guessable range; ${random.uuid} is unaffected because it is generated from a cryptographically strong source. The vendor's fix hardens or warns against using these sources for secret material rather than changing application code that already depends on them.
RemediationAI
Vendor-released patches are available: upgrade to Spring Boot 4.0.6, 3.5.14, 3.4.16, 3.3.19, or 2.7.33 as appropriate for your branch, per the Spring advisory at https://spring.io/security/cve-2026-40975; Red Hat users should apply the corresponding errata (e.g., RHSA-2026:17668 at https://access.redhat.com/errata/RHSA-2026:17668). Because the core problem is misuse of weak randomness for secrets, patching alone is not sufficient - audit your configuration for any ${random.value}, ${random.int}, or ${random.long} placeholders used to produce passwords, API keys, tokens, or other secret material and replace those generated values with cryptographically strong secrets from a vault or SecureRandom, rotating any secret previously created this way since it may already be predictable. ${random.uuid} does not need remediation. If immediate upgrade is not possible, the effective compensating control is to stop using these placeholders for secrets and regenerate affected secrets out-of-band; there is no network-level mitigation since the weakness is in the generated value, not a reachable service endpoint.
Oracle Java SE 7 Update 6 and earlier contains multiple sandbox bypass vulnerabilities via the ClassFinder and forName m
Remote code execution in IBM Sterling B2B Integrator, Sterling Integrator, and Tivoli Common Reporting allows unauthenti
Java Runtime Environment sandbox bypass via incorrect image channel verification in 2D component allows remote unauthent
Oracle Java SE JDK/JRE 7 and 6 Update 27 and earlier allows remote code execution with complete system compromise throug
JBoss Seam 2 in Red Hat JBoss EAP 4.3.0 fails to sanitize JBoss Expression Language inputs, allowing remote attackers to
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 up
Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote attackers to execute arbitrary code by (1) using
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Up
The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allow
Remote unauthenticated attackers can execute arbitrary code on Adobe ColdFusion servers through Java deserialization fla
The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets parameter values as OGNL expressions during
Same weakness CWE-330 – Use of Insufficiently Random Values
View allSame technique Information Disclosure
View allVendor StatusVendor
Share
External POC / Exploit Code
Leaving vuln.today