Количество 4
Количество 4
CVE-2024-38807
Applications that use spring-boot-loader or spring-boot-loader-classic and contain custom code that performs signature verification of nested jar files may be vulnerable to signature forgery where content that appears to have been signed by one signer has, in fact, been signed by another.
CVE-2024-38807
Applications that use spring-boot-loader or spring-boot-loader-classic and contain custom code that performs signature verification of nested jar files may be vulnerable to signature forgery where content that appears to have been signed by one signer has, in fact, been signed by another.
CVE-2024-38807
Applications that use spring-boot-loaderor spring-boot-loader-classica ...
GHSA-7cj3-x93g-gj76
Signature forgery in Spring Boot's Loader
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-38807 Applications that use spring-boot-loader or spring-boot-loader-classic and contain custom code that performs signature verification of nested jar files may be vulnerable to signature forgery where content that appears to have been signed by one signer has, in fact, been signed by another. | CVSS3: 6.3 | 0% Низкий | больше 1 года назад |
 | CVE-2024-38807 Applications that use spring-boot-loader or spring-boot-loader-classic and contain custom code that performs signature verification of nested jar files may be vulnerable to signature forgery where content that appears to have been signed by one signer has, in fact, been signed by another. | CVSS3: 6.3 | 0% Низкий | больше 1 года назад |
| CVE-2024-38807 Applications that use spring-boot-loaderor spring-boot-loader-classica ... | CVSS3: 6.3 | 0% Низкий | больше 1 года назад |
| GHSA-7cj3-x93g-gj76 Signature forgery in Spring Boot's Loader | CVSS3: 6.3 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу