Package impact

Maven / org.springframework:spring-core

critical high medium low unknown

0

KEV Has exploit

CVE	Severity	CVSS	Risk	Published	Description	Impact
CVE-2015-5211	critical	9.6	9.6	9y ago	Files or Directories Accessible to External Parties in org.springframework:spring-core
CVE-2016-5007	high	7.5	7.5	9y ago	Spring Security and Spring Framework may not recognize certain paths that should be protected
CVE-2011-2730	high	—	7.5	14y ago	Improper Neutralization of Directives in Dynamically Evaluated Code in Spring Framework
CVE-2011-2894	medium	—	6.8	15y ago	Spring Framework and Spring Security vulnerable to Deserialization of Untrusted Data
CVE-2015-0201	medium	—	5.0	11y ago	Moderate severity vulnerability that affects org.springframework:spring-core
CVE-2014-3578	medium	—	5.0	11y ago	Improper Limitation of a Pathname to a Restricted Directory in Spring Framework
CVE-2025-41249	unknown	—	—	8mo ago	Spring Framework annotation detection mechanism may result in improper authorization
CVE-2024-22233	unknown	—	—	2y ago	Spring Framework server Web DoS Vulnerability
CVE-2021-22096	unknown	—	—	4y ago	Improper Output Neutralization for Logs in Spring Framework
CVE-2009-1190	unknown	—	—	4y ago	Spring Framework Inefficient Regular Expression Complexity
CVE-2021-22060	unknown	—	—	4y ago	Log entry injection in Spring Framework
CVE-2018-15756	unknown	—	—	6y ago	Denial of Service in Spring Framework
CVE-2018-1272	unknown	—	—	8y ago	Possible privilege escalation in org.springframework:spring-core
CVE-2018-1271	unknown	—	—	8y ago	Path Traversal in org.springframework:spring-core
CVE-2018-1258	unknown	—	—	8y ago	Spring Framework when used in combination with any versions of Spring Security contains an authorization bypass
CVE-2018-1257	unknown	—	—	8y ago	Denial of Service in org.springframework:spring-core
CVE-2018-1199	unknown	—	—	8y ago	Improper Input Validation in org.springframework.security:spring-security-core, org.springframework.security:spring-security-core , and org.springframework:spring-core
CVE-2018-11040	unknown	—	—	8y ago	Moderate severity vulnerability that affects org.springframework:spring-core