exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2024-38808

12 месяцев назад

In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it is possible for a user to provide a specially crafted Spring Expression Language (SpEL) expression that may cause a denial of service (DoS) condition. Specifically, an application is vulnerable when the following is true: * The application evaluates user-supplied SpEL expressions.

CVSS3: 4.3

EPSS: Низкий

CVE-2024-38808

12 месяцев назад

In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it is possible for a user to provide a specially crafted Spring Expression Language (SpEL) expression that may cause a denial of service (DoS) condition. Specifically, an application is vulnerable when the following is true: * The application evaluates user-supplied SpEL expressions.

CVSS3: 5.9

EPSS: Низкий

CVE-2024-38808

12 месяцев назад

In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it is possible for a user to provide a specially crafted Spring Expression Language (SpEL) expression that may cause a denial of service (DoS) condition. Specifically, an application is vulnerable when the following is true: * The application evaluates user-supplied SpEL expressions.

CVSS3: 4.3

EPSS: Низкий

CVE-2024-38808

12 месяцев назад

In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported vers ...

CVSS3: 4.3

EPSS: Низкий

GHSA-9cmq-m9j5-mvww

12 месяцев назад

Spring Framework vulnerable to Denial of Service

CVSS3: 4.3

EPSS: Низкий

BDU:2024-08623

12 месяцев назад

Уязвимость программной платформы Spring Framework, связанная с ошибками освобождения ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-38808 In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it is possible for a user to provide a specially crafted Spring Expression Language (SpEL) expression that may cause a denial of service (DoS) condition. Specifically, an application is vulnerable when the following is true: * The application evaluates user-supplied SpEL expressions.	CVSS3: 4.3	0% Низкий	12 месяцев назад
CVE-2024-38808 In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it is possible for a user to provide a specially crafted Spring Expression Language (SpEL) expression that may cause a denial of service (DoS) condition. Specifically, an application is vulnerable when the following is true: * The application evaluates user-supplied SpEL expressions.	CVSS3: 5.9	0% Низкий	12 месяцев назад
CVE-2024-38808 In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it is possible for a user to provide a specially crafted Spring Expression Language (SpEL) expression that may cause a denial of service (DoS) condition. Specifically, an application is vulnerable when the following is true: * The application evaluates user-supplied SpEL expressions.	CVSS3: 4.3	0% Низкий	12 месяцев назад
CVE-2024-38808 In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported vers ...	CVSS3: 4.3	0% Низкий	12 месяцев назад
GHSA-9cmq-m9j5-mvww Spring Framework vulnerable to Denial of Service	CVSS3: 4.3	0% Низкий	12 месяцев назад
BDU:2024-08623 Уязвимость программной платформы Spring Framework, связанная с ошибками освобождения ресурсов, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 4.3	0% Низкий	12 месяцев назад

Уязвимостей на страницу