spring Latest Vulnerabilities
Latest vulnerabilities published by spring
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Null Endpoint Exposure Vulnerability in Spring Security Framework
CVE-2025-22235SpringSpring Boot7.3HIGHVulnerability in Spring Cloud Config Server Affects Token Management
CVE-2025-22232SpringSpring Cloud Config5.3MEDIUMAuthorization Bypass Vulnerability in Spring Security by Pivotal Software
CVE-2025-22223SpringSpring Security๐พ๐ก5.3MEDIUMPassword Validation Flaw in Spring Framework Affects BCryptPasswordEncoder
CVE-2025-22228SpringSpring Security7.4HIGHCross-site Scripting Vulnerability in Spring Devs Pre Order Addon for WooCommerce
CVE-2025-26553Spring DevsPre Order Addon for Wo...Data Exposure Via Case Sensitive Comparisons in VMware Tanzu Spring LDAP
CVE-2024-38829SpringSpring Ldap3.7LOWAuthorization Rules May Not Work Properly Due to Locale-Dependent Exceptions in Java
CVE-2024-38827Spring By Vmware ...Spring Security4.8MEDIUMSpring MVC Controller Methods Vulnerable to DoS Attack
CVE-2024-38828SpringSpring๐พ๐ก5.3MEDIUMBypassing Authorization Rules in Spring WebFlux Applications
CVE-2024-38821SpringSpring๐พ๐ก๐ฐ9.1CRITICALSpring WebApplications Vulnerable to Path Traversal Attacks
CVE-2024-38816SpringSpring๐พ๐กEPSS 92%๐ฐ7.5HIGHSpring Boot Loader Vulnerability: Signature Forgery Attack
CVE-2024-38807SpringSpring Boot6.3MEDIUMSpring Framework Denial of Service Vulnerability
CVE-2024-38808SpringSpring Framework4.3MEDIUMMissing Authorization Vulnerability in Spring Security 6.3.0 and 6.3.1
CVE-2024-38810SpringSpring Security7.5HIGHMalicious File Write Vulnerability in Spring Cloud Data Flow Skipper Prior to 2.11.4
CVE-2024-37084SpringSpring Cloud Data Flow๐พ๐กEPSS 72%8.8HIGHUnauthorized Access to Endpoints Through Client Certificate
CVE-2024-6834APIML Spring Clou...Spring Cloud Function Web DOS Vulnerability
CVE-2024-22271Spring By Vmware ...Spring Cloud Function ...8.2HIGHMalicious File Write Vulnerability in Skipper Server
CVE-2024-22263Spring By Vmware ...Spring Cloud Skipper๐พ๐กEPSS 67%8.8HIGHSpring UriComponentsBuilder Vulnerability: Open Redirect and SSRF Risks
CVE-2024-22262SpringSpring Framework8.1HIGHPKCE Downgrade Attack for Confidential Clients
CVE-2024-22258SpringSpring6.1MEDIUMSpring Framework UriComponentsBuilder Vulnerability
CVE-2024-22259SpringSpring FrameworkEPSS 13%๐ฐ8.1HIGHPotential Open Redirect Vulnerability in UriComponentsBuilder
CVE-2024-22243SpringSpring Framework๐พ๐กEPSS 41%8.1HIGHBroken Access Control Vulnerability in Spring Security
CVE-2024-22234SpringSpring Security7.4HIGHLocal Information Disclosure in Spring Cloud Contract by Spring
CVE-2024-22236SpringSpring Cloud Contract5.5MEDIUMPossible Denial-of-Service (DoS) Vulnerability in Spring Framework Versions 6.0.15 and 6.1.2
CVE-2024-22233SpringSpring Framework๐ฐ7.5HIGHReactor Netty HTTP Server Metrics DoS Vulnerability
CVE-2023-34054SpringReactor Netty7.5HIGH