Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.springframework/spring-web@6.1.14
purl pkg:maven/org.springframework/spring-web@6.1.14
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-pzz7-mfs4-rfda Spring Framework DataBinder Case Sensitive Match Exception The fix for CVE-2022-22968 made disallowedFields patterns in DataBinder case insensitive. However, String.toLowerCase() has some Locale dependent exceptions that could potentially result in fields not protected as expected. CVE-2024-38820
GHSA-4gc7-5j7h-4qph

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T23:12:02.783709+00:00 GitLab Importer Fixing VCID-pzz7-mfs4-rfda https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-web/CVE-2024-38820.yml 38.4.0
2026-04-12T00:30:29.602863+00:00 GitLab Importer Fixing VCID-pzz7-mfs4-rfda https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-web/CVE-2024-38820.yml 38.3.0
2026-04-03T00:38:08.844217+00:00 GitLab Importer Fixing VCID-pzz7-mfs4-rfda https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-web/CVE-2024-38820.yml 38.1.0
2026-04-02T12:40:15.936190+00:00 GitLab Importer Fixing VCID-pzz7-mfs4-rfda https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-web/CVE-2024-38820.yml 38.0.0
2026-04-01T16:06:42.529909+00:00 GHSA Importer Fixing VCID-pzz7-mfs4-rfda https://github.com/advisories/GHSA-4gc7-5j7h-4qph 38.0.0
2026-04-01T12:49:20.467120+00:00 GithubOSV Importer Fixing VCID-pzz7-mfs4-rfda https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/10/GHSA-4gc7-5j7h-4qph/GHSA-4gc7-5j7h-4qph.json 38.0.0