org.springframework:spring-expression@4.3.27.RELEASE vulnerabilities
-
latest version
6.2.0
-
latest non vulnerable version
-
first published
15 years ago
-
latest version published
14 days ago
-
licenses detected
- [0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.springframework:spring-expression package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling when a user provides a very long How to fix Allocation of Resources Without Limits or Throttling? Upgrade |
[,5.2.24.RELEASE)
[5.3.0,5.3.27)
[6.0.0,6.0.8)
|
Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via a crafted How to fix Allocation of Resources Without Limits or Throttling? Upgrade |
[,5.2.23.RELEASE)
[5.3.0,5.3.26)
[6.0.0,6.0.7)
|
Affected versions of this package are vulnerable to Denial of Service (DoS) by providing a specially crafted SpEL expression, that might result in an How to fix Denial of Service (DoS)? Upgrade |
[,5.2.20.RELEASE)
[5.3.0,5.3.17)
|