A vulnerability was found in Vmware Spring Web Services up to 3.1.8/4.0.18/4.1.3/5.0.1 and classified as problematic . This impacts an unknown function. Such manipulation leads to information exposure through error message. This vulnerability is documented as CVE-2026-40997 . The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.