libspring-java vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the libspring-java package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M CVE-2018-15756	*
M Inclusion of Functionality from Untrusted Control Sphere	*
M CVE-2018-11039	*
L CVE-2018-1257	*
M Improper Input Validation	*
M XML External Entity (XXE) Injection	<3.0.6.RELEASE-13ubuntu0.1~esm1
M Improper Input Validation	<3.0.6.RELEASE-13ubuntu0.1~esm2
M Access Restriction Bypass	*
L Directory Traversal	<3.0.6.RELEASE-13ubuntu0.1~esm1
L Out-of-Bounds	<3.0.6.RELEASE-13ubuntu0.1~esm2
M Directory Traversal	<3.0.6.RELEASE-13ubuntu0.1~esm1
M Directory Traversal	<3.0.6.RELEASE-13ubuntu0.1~esm1