org.springframework.ws:spring-ws-core 2.4.6.RELEASE

Direct Vulnerabilities

Known vulnerabilities in the org.springframework.ws:spring-ws-core package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
H Server-side Request Forgery (SSRF) org.springframework.ws:spring-ws-core is a product of the Spring community focused on creating document-driven Web services. Spring Web Services aims to facilitate contract-first SOAP service development, allowing for the creation of flexible web services using one of the many ways to manipulate XML payloads. Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF). When WS-Addressing is used with non-anonymous `ReplyTo` or `FaultTo` addresses, the addressing server interceptor initiates outbound connections through configured `WebServiceMessageSender` instances to destinations taken directly from the request's `wsa:ReplyTo` / `wsa:FaultTo` headers, without verifying that those destinations are safe to connect to. An attacker can supply addressing headers that cause the server to connect to internal-only hosts, cloud metadata endpoints, or other sensitive destinations, resulting in Server-Side Request Forgery. Note: This issue only affects deployments where all of the following are true: an `AbstractAddressingEndpointMapping` subclass is registered with one or more `WebServiceMessageSender` instances configured for out-of-band replies; the service accepts WS-Addressing `wsa:ReplyTo` / `wsa:FaultTo` headers from untrusted callers; no restrictive destination validator or network-level egress control is in place. How to fix Server-side Request Forgery (SSRF)? Upgrade `org.springframework.ws:spring-ws-core` to version 4.1.4, 5.0.2 or higher.	[,4.1.4)[5.0.0-M1,5.0.2)

Vulnerability

Vulnerable Version

Server-side Request Forgery (SSRF)

org.springframework.ws:spring-ws-core is a product of the Spring community focused on creating document-driven Web services. Spring Web Services aims to facilitate contract-first SOAP service development, allowing for the creation of flexible web services using one of the many ways to manipulate XML payloads.

Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF). When WS-Addressing is used with non-anonymous ReplyTo or FaultTo addresses, the addressing server interceptor initiates outbound connections through configured WebServiceMessageSender instances to destinations taken directly from the request's wsa:ReplyTo / wsa:FaultTo headers, without verifying that those destinations are safe to connect to. An attacker can supply addressing headers that cause the server to connect to internal-only hosts, cloud metadata endpoints, or other sensitive destinations, resulting in Server-Side Request Forgery.

Note:

This issue only affects deployments where all of the following are true:

an AbstractAddressingEndpointMapping subclass is registered with one or more WebServiceMessageSender instances configured for out-of-band replies;
the service accepts WS-Addressing wsa:ReplyTo / wsa:FaultTo headers from untrusted callers;
no restrictive destination validator or network-level egress control is in place.

How to fix Server-side Request Forgery (SSRF)?

Upgrade org.springframework.ws:spring-ws-core to version 4.1.4, 5.0.2 or higher.

[,4.1.4)[5.0.0-M1,5.0.2)

org.springframework.ws:spring-ws-core@2.4.6.RELEASE

latest version

latest non vulnerable version

first published

latest version published

licenses detected

package registry

Direct Vulnerabilities

Fix vulnerabilities automatically