CVE-2026-40996
Received Received - Intake
Weak RSA PKCS#1 v1.5 Key Transport in Spring Web Services

Publication date: 2026-06-11

Last updated on: 2026-06-11

Assigner: VMware

Description
Wss4jSecurityInterceptor defaulted allowRSA15KeyTransportAlgorithm to true, overriding Apache WSS4J's safer default for validation RequestData. Inbound WS-Security decryption could therefore accept RSA PKCS#1 v1.5 (rsa-1_5) encrypted key material unless operators explicitly reconfigured the flag. Affected versions: Spring Web Services 5.0.0 through 5.0.1; 4.1.0 through 4.1.3; 4.0.0 through 4.0.18; 3.1.0 through 3.1.8.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-11
Last Modified
2026-06-11
Generated
2026-06-11
AI Q&A
2026-06-11
EPSS Evaluated
N/A
NVD
CVE-2026-40996
EUVD
EUVD-2026-36206
Affected Vendors & Products
Showing 4 associated CPEs
Vendor Product Version / Range
spring_project spring_web_services From 3.1.0 (inc) to 3.1.8 (inc)
spring_project spring_web_services From 4.0.0 (inc) to 4.0.18 (inc)
spring_project spring_web_services From 4.1.0 (inc) to 4.1.3 (inc)
spring_project spring_web_services From 5.0.0 (inc) to 5.0.1 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-327 The product uses a broken or risky cryptographic algorithm or protocol.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-40996 is a security vulnerability in Spring Web Services where the default setting of Wss4jSecurityInterceptor allowed the use of the RSA PKCS#1 v1.5 key transport algorithm by default. This setting overrides Apache WSS4J's safer default configuration for validating RequestData.

Because of this, inbound WS-Security decryption could accept RSA PKCS#1 v1.5 encrypted key material unless operators explicitly changed the configuration. This weaker algorithm can be exploited in man-in-the-middle or oracle-capable attack scenarios when XML encryption or key transport is handled by WSS4J through Spring WS.

Impact Analysis

This vulnerability can expose systems to cryptographic attacks that exploit the weaker RSA PKCS#1 v1.5 key transport algorithm. Attackers positioned as man-in-the-middle or with oracle capabilities could potentially decrypt or manipulate encrypted communications that rely on this algorithm.

Such attacks could lead to unauthorized access to sensitive data transmitted via WS-Security, undermining confidentiality and integrity of the communication.

Detection Guidance

Detection of this vulnerability involves identifying if your Spring Web Services deployment is using affected versions and if the Wss4jSecurityInterceptor is configured with the default allowRSA15KeyTransportAlgorithm set to true.

Since the vulnerability relates to inbound WS-Security decryption accepting RSA PKCS#1 v1.5 encrypted key material, you can monitor network traffic for WS-Security messages that use RSA v1.5 key transport algorithms.

Commands or methods to detect this might include:

  • Using network packet capture tools like tcpdump or Wireshark to filter and inspect SOAP messages for RSA v1.5 key transport usage.
  • Searching your application configuration or logs for the presence of Wss4jSecurityInterceptor and checking if the allowRSA15KeyTransportAlgorithm flag is set to true.
  • Using grep or similar commands to find configuration files or code snippets that set allowRSA15KeyTransportAlgorithm, for example: grep -r "allowRSA15KeyTransportAlgorithm" /path/to/your/app
Mitigation Strategies

The recommended immediate mitigation steps are:

  • Upgrade your Spring Web Services to fixed versions: 5.0.2, 4.1.4, 4.0.19, or 3.1.9 depending on your release line.
  • If upgrading is not possible immediately, explicitly disable RSA PKCS#1 v1.5 encryption by calling setAllowRSA15KeyTransportAlgorithm(false) on the Wss4jSecurityInterceptor configuration.
Compliance Impact

The provided information does not specify how CVE-2026-40996 directly affects compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-40996. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart