Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/21193?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/21193?format=api", "vulnerability_id": "VCID-k2en-h5n1-r7gr", "summary": "Spring Framework annotation detection mechanism may result in improper authorization\nThe Spring Framework annotation detection mechanism may not correctly resolve annotations on methods within type hierarchies with a parameterized super type with unbounded generics. This can be an issue if such annotations are used for authorization decisions.\n\nYour application may be affected by this if you are using Spring Security's @EnableMethodSecurity feature.\n\nYou are not affected by this if you are not using @EnableMethodSecurity or if you do not use security annotations on methods in generic superclasses or generic interfaces.\n\nThis CVE is published in conjunction with CVE-2025-41248 https://spring.io/security/cve-2025-41248 .", "aliases": [ { "alias": "CVE-2025-41249" }, { "alias": "GHSA-jmp9-x22r-554x" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/63327?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.11" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48424?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-vvyu-uk8r-wuaz" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/291670?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/291671?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/291672?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/291673?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/291674?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/291675?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/291676?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/291677?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/291678?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/143895?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-ygpk-fb56-sqa4" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/82102?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/291679?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/291680?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/43377?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/291681?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/291682?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/48475?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.17" }, { "url": "http://public2.vulnerablecode.io/api/packages/48426?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-c74k-e1me-pfb2" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/49630?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k17s-ttg2-ubgj" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-w6br-v2gm-j7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/50703?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/364033?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.21", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.21" }, { "url": "http://public2.vulnerablecode.io/api/packages/364034?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.22" }, { "url": "http://public2.vulnerablecode.io/api/packages/364035?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.23", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.23" }, { "url": "http://public2.vulnerablecode.io/api/packages/364036?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.24", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.24" }, { "url": "http://public2.vulnerablecode.io/api/packages/364037?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.25", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.25" }, { "url": "http://public2.vulnerablecode.io/api/packages/56517?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.26" }, { "url": "http://public2.vulnerablecode.io/api/packages/57004?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.27", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.27" }, { "url": "http://public2.vulnerablecode.io/api/packages/809320?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.28", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.28" }, { "url": "http://public2.vulnerablecode.io/api/packages/809321?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.29", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.29" }, { "url": "http://public2.vulnerablecode.io/api/packages/809322?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/809323?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.31", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.31" }, { "url": "http://public2.vulnerablecode.io/api/packages/809324?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.32", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.32" }, { "url": "http://public2.vulnerablecode.io/api/packages/809325?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.33", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.33" }, { "url": "http://public2.vulnerablecode.io/api/packages/809326?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.34", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/809327?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.35", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.35" }, { "url": "http://public2.vulnerablecode.io/api/packages/809328?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.36", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.36" }, { "url": "http://public2.vulnerablecode.io/api/packages/809329?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.37", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.37" }, { "url": "http://public2.vulnerablecode.io/api/packages/809330?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.38", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.38" }, { "url": "http://public2.vulnerablecode.io/api/packages/809331?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.39", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.39" }, { "url": "http://public2.vulnerablecode.io/api/packages/63324?format=api", "purl": "pkg:maven/org.springframework/spring-core@5.3.44", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.3.44" }, { "url": "http://public2.vulnerablecode.io/api/packages/56516?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/364038?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/364039?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/364040?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/364041?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/364042?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/364043?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-z3th-j593-m7bg" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/56518?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6ysx-5wcw-f7b5" }, { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/57005?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/809332?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/809333?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/809334?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/809335?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/809336?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/809337?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/50579?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-s7s7-tzq3-m3bc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/50580?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/809338?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.17" }, { "url": "http://public2.vulnerablecode.io/api/packages/809339?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/809340?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/809341?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/809342?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.21", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.21" }, { "url": "http://public2.vulnerablecode.io/api/packages/809343?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.22" }, { "url": "http://public2.vulnerablecode.io/api/packages/809344?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.0.23", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.0.23" }, { "url": "http://public2.vulnerablecode.io/api/packages/809345?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/809346?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/50577?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" }, { "vulnerability": "VCID-s7s7-tzq3-m3bc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50578?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/809347?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/809348?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/809349?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/809350?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/809351?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/809352?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/809353?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/809354?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/809355?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/809356?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/569835?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/809357?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/809358?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/809359?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.17" }, { "url": "http://public2.vulnerablecode.io/api/packages/809360?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/809361?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/809362?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.20" }, { "url": "http://public2.vulnerablecode.io/api/packages/809363?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.21", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.21" }, { "url": "http://public2.vulnerablecode.io/api/packages/63325?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.1.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.1.22" }, { "url": "http://public2.vulnerablecode.io/api/packages/63326?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/809364?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/809365?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/809366?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/809367?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/809368?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/809369?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/809370?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/809371?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/809372?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/809373?format=api", "purl": "pkg:maven/org.springframework/spring-core@6.2.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-k2en-h5n1-r7gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@6.2.10" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-41249.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-41249.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-41249", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20101", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20085", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20027", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.19947", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20221", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20162", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.2114", "published_at": "2026-05-12T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21112", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21114", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21091", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.2099", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21056", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21144", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21121", "published_at": "2026-05-11T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22125", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22011", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22057", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22064", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22065", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-41249" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-41249", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-41249" }, { "reference_url": "https://github.com/spring-projects/spring-framework", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/spring-projects/spring-framework" }, { "reference_url": "https://github.com/spring-projects/spring-framework/commit/6d710d482a6785b069e35022e81758953afc21ff", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/spring-projects/spring-framework/commit/6d710d482a6785b069e35022e81758953afc21ff" }, { "reference_url": "https://github.com/spring-projects/spring-framework/issues/35342", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/spring-projects/spring-framework/issues/35342" }, { "reference_url": "https://github.com/spring-projects/spring-framework/releases/tag/v6.2.11", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/spring-projects/spring-framework/releases/tag/v6.2.11" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2395725", "reference_id": "2395725", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2395725" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-41249", "reference_id": "CVE-2025-41249", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-41249" }, { "reference_url": "https://spring.io/security/cve-2025-41249", "reference_id": "CVE-2025-41249", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-16T19:29:22Z/" } ], "url": "https://spring.io/security/cve-2025-41249" }, { "reference_url": "https://github.com/advisories/GHSA-jmp9-x22r-554x", "reference_id": "GHSA-jmp9-x22r-554x", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-jmp9-x22r-554x" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:18028", "reference_id": "RHSA-2025:18028", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:18028" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22765", "reference_id": "RHSA-2025:22765", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22765" } ], "weaknesses": [ { "cwe_id": 863, "name": "Incorrect Authorization", "description": "The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 285, "name": "Improper Authorization", "description": "The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k2en-h5n1-r7gr" }