VIR Vulnerability Intelligence Relay

Package impact

java Maven / org.springframework:spring-core

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2015-5211 critical 9.6 9.6 9y ago Files or Directories Accessible to External Parties in org.springframework:spring-core
CVE-2016-5007 high 7.5 7.5 9y ago Spring Security and Spring Framework may not recognize certain paths that should be protected
CVE-2011-2730 high 7.5 14y ago Improper Neutralization of Directives in Dynamically Evaluated Code in Spring Framework
CVE-2025-41249 unknown 8mo ago Spring Framework annotation detection mechanism may result in improper authorization
CVE-2024-22233 unknown 2y ago Spring Framework server Web DoS Vulnerability
CVE-2021-22096 unknown 4y ago Improper Output Neutralization for Logs in Spring Framework
CVE-2009-1190 unknown 4y ago Spring Framework Inefficient Regular Expression Complexity
CVE-2021-22060 unknown 4y ago Log entry injection in Spring Framework
CVE-2018-15756 unknown 6y ago Denial of Service in Spring Framework
CVE-2018-1272 unknown 8y ago Possible privilege escalation in org.springframework:spring-core
CVE-2018-1271 unknown 8y ago Path Traversal in org.springframework:spring-core
CVE-2018-1258 unknown 8y ago Spring Framework when used in combination with any versions of Spring Security contains an authorization bypass
CVE-2018-1257 unknown 8y ago Denial of Service in org.springframework:spring-core
CVE-2018-1199 unknown 8y ago Improper Input Validation in org.springframework.security:spring-security-core, org.springframework.security:spring-security-core , and org.springframework:spring-core
CVE-2018-11040 unknown 8y ago Moderate severity vulnerability that affects org.springframework:spring-core