org.springframework:spring-web@5.3.10 vulnerabilities
-
latest version
6.1.14
-
latest non vulnerable version
-
first published
19 years ago
-
latest version published
a month ago
-
licenses detected
- [0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.springframework:spring-web package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.springframework:spring-web is a package that provides a comprehensive programming and configuration model for modern Java-based enterprise applications - on any kind of deployment platform. Affected versions of this package are vulnerable to Denial of Service (DoS) in the form of improper ETag prefix validation when parsing ETags from the How to fix Denial of Service (DoS)? Upgrade |
[,5.3.38)
[6.0.0,6.0.23)
[6.1.0,6.1.12)
|
org.springframework:spring-web is a package that provides a comprehensive programming and configuration model for modern Java-based enterprise applications - on any kind of deployment platform. Affected versions of this package are vulnerable to Open Redirect when Note: This is the same as CVE-2024-22259 and CVE-2024-22243, but with different input. How to fix Open Redirect? Upgrade |
[,5.3.34)
[6.0.0,6.0.19)
[6.1.0,6.1.6)
|
org.springframework:spring-web is a package that provides a comprehensive programming and configuration model for modern Java-based enterprise applications - on any kind of deployment platform. Affected versions of this package are vulnerable to Open Redirect when using Note: This is the same as CVE-2024-22243, but with different input. How to fix Open Redirect? Upgrade |
[,5.3.33)
[6.0.0,6.0.18)
[6.1.0,6.1.5)
|
org.springframework:spring-web is a package that provides a comprehensive programming and configuration model for modern Java-based enterprise applications - on any kind of deployment platform. Affected versions of this package are vulnerable to Open Redirect when How to fix Open Redirect? Upgrade |
[,5.3.32)
[6.0.0,6.0.17)
[6.1.0,6.1.4)
|