CVE-2024-38828

Опубликовано: 18 нояб. 2024

Источник: debian

Описание

Spring MVC controller methods with an @RequestBody byte[] method parameter are vulnerable to a DoS attack.

Пакет	Статус	Версия исправления	Релиз	Тип
libspring-java	unfixed			package

https://spring.io/security/cve-2024-38828
Only supported for building applications shipped in Debian, see README.Debian.security

CVE-2024-38828

CVSS3: 5.3

ubuntu

около 1 года назад

Spring MVC controller methods with an @RequestBody byte[] method parameter are vulnerable to a DoS attack.

CVE-2024-38828

CVSS3: 5.3

redhat

около 1 года назад

Spring MVC controller methods with an @RequestBody byte[] method parameter are vulnerable to a DoS attack.

CVE-2024-38828

CVSS3: 5.3

nvd

около 1 года назад

Spring MVC controller methods with an @RequestBody byte[] method parameter are vulnerable to a DoS attack.

GHSA-w3c8-7r8f-9jp8

CVSS3: 5.3

github

около 1 года назад

Spring MVC controller vulnerable to a DoS attack