Описание
Spring MVC and WebFlux has Server Sent Event stream corruption
Spring MVC and WebFlux applications are vulnerable to stream corruption when using Server-Sent Events (SSE). This issue affects Spring Foundation: from 7.0.0 through 7.0.5, from 6.2.0 through 6.2.16, from 6.1.0 through 6.1.25, from 5.3.0 through 5.3.46.
Пакеты
org.springframework:spring-webmvc
>= 7.0.0-M1, < 7.0.6
7.0.6
org.springframework:spring-webmvc
>= 6.2.0, < 6.2.17
6.2.17
org.springframework:spring-webmvc
>= 6.0.0, <= 6.1.21
Отсутствует
org.springframework:spring-webmvc
>= 5.3.0, <= 5.3.39
Отсутствует
org.springframework:spring-webflux
>= 7.0.0-M1, < 7.0.6
7.0.6
org.springframework:spring-webflux
>= 6.2.0, < 6.2.17
6.2.17
org.springframework:spring-webflux
>= 6.0.0, <= 6.1.21
Отсутствует
org.springframework:spring-webflux
>= 5.3.0, <= 5.3.39
Отсутствует
Связанные уязвимости
Spring MVC and WebFlux applications are vulnerable to stream corruption when using Server-Sent Events (SSE). This issue affects Spring Foundation: from 7.0.0 through 7.0.5, from 6.2.0 through 6.2.16, from 6.1.0 through 6.1.25, from 5.3.0 through 5.3.46.
Spring MVC and WebFlux applications are vulnerable to stream corruption when using Server-Sent Events (SSE). This issue affects Spring Foundation: from 7.0.0 through 7.0.5, from 6.2.0 through 6.2.16, from 6.1.0 through 6.1.25, from 5.3.0 through 5.3.46.
Spring MVC and WebFlux applications are vulnerable to stream corruptio ...