Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/13566?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13566?format=api", "vulnerability_id": "VCID-6sye-grs9-dqfh", "summary": "Exposure of Resource to Wrong Sphere\nspring-boot versions prior to version v2.2.11.RELEASE was vulnerable to temporary directory hijacking. This vulnerability impacted the `org.springframework.boot.web.server.AbstractConfigurableWebServerFactory.createTempDir` method. NOTE: This vulnerability only affects products and/or versions that are no longer supported by the maintainer.", "aliases": [ { "alias": "CVE-2022-27772" }, { "alias": "GHSA-cm59-pr5q-cw85" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48377?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.11.RELEASE" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/166925?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.0.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.0.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166926?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.0.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.0.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166927?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.0.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.0.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166928?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166929?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166930?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166931?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166932?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166933?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166934?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166935?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166936?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166937?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166938?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.10.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166939?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.11.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166940?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.1.12.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.12.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166941?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.2.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166942?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.2.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166943?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.2.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166944?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.2.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166945?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.2.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166946?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.2.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166947?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.2.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166948?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.2.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166949?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.2.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166950?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.3.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166951?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.3.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-7u71-ndsy-8yh9" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166952?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.3.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166953?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.3.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166954?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.3.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166955?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.3.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166956?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.3.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166957?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.3.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166958?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.3.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166959?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.4.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166960?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.4.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166961?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.4.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166962?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.4.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166963?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.4.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166964?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.4.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166965?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.4.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166966?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.4.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166967?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166968?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166969?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166970?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166971?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166972?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166973?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166974?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/166975?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-g7ce-fs6u-abdp" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/25850?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-hek3-n96t-bydw" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/27028?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.10.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291480?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.11.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291481?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.12.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.12.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291482?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.13.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.13.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291483?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.14.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.14.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291484?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.15.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.15.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291485?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.16.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.16.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291486?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.17.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.17.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291487?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.18.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.18.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291488?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.19.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.19.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291489?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.20.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.20.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291490?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.21.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.21.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291491?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@1.5.22.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.22.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291492?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291493?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291494?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291495?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291496?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291497?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291498?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291499?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291500?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291501?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.0.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.0.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291502?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291503?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291504?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291505?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291506?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291507?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291508?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291509?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291510?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291511?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291512?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.10.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291513?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.11.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291514?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.12.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.12.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291515?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.13.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.13.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291516?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.14.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.14.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291517?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.15.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.15.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291518?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.16.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.16.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291519?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.17.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.17.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291520?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.1.18.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.1.18.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291521?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291522?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291523?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291524?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291525?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291526?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291527?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291528?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291529?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/291530?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/144194?format=api", "purl": "pkg:maven/org.springframework.boot/spring-boot@2.2.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6sye-grs9-dqfh" }, { "vulnerability": "VCID-k3fg-3bs3-87b9" }, { "vulnerability": "VCID-kwk7-s11d-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@2.2.10.RELEASE" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-27772", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63303", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63251", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.6328", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63245", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63297", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63315", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63332", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63316", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63279", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00442", "scoring_system": "epss", "scoring_elements": "0.63324", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-27772" }, { "reference_url": "https://github.com/spring-projects/spring-boot", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/spring-projects/spring-boot" }, { "reference_url": "https://github.com/spring-projects/spring-boot/commit/667ccdae84822072f9ea1a27ed5c77964c71002d", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/spring-projects/spring-boot/commit/667ccdae84822072f9ea1a27ed5c77964c71002d" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-27772", "reference_id": "CVE-2022-27772", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-27772" }, { "reference_url": "https://github.com/advisories/GHSA-cm59-pr5q-cw85", "reference_id": "GHSA-cm59-pr5q-cw85", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-cm59-pr5q-cw85" }, { "reference_url": "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85", "reference_id": "GHSA-cm59-pr5q-cw85", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 668, "name": "Exposure of Resource to Wrong Sphere", "description": "The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 377, "name": "Insecure Temporary File", "description": "Creating and using insecure temporary files can leave application and system data vulnerable to attack." }, { "cwe_id": 379, "name": "Creation of Temporary File in Directory with Insecure Permissions", "description": "The product creates a temporary file in a directory whose permissions allow unintended actors to determine the file's existence or otherwise access that file." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6sye-grs9-dqfh" }