Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-pht6-8af8-b3f2

Summary Spring Framework, version 5.1, versions 5.0.x prior to 5.0.10, versions 4.3.x prior to 4.3.20, and older unsupported versions on the 4.2.x branch provide support for range requests when serving static resources through the ResourceHttpRequestHandler, or starting in 5.0 when an annotated controller returns an org.springframework.core.io.Resource. A malicious user (or attacker) can add a range header with a high number of ranges, or with wide ranges that overlap, or both, for a denial of service attack. This vulnerability affects applications that depend on either spring-webmvc or spring-webflux. Such applications must also have a registration for serving static resources (e.g. JS, CSS, images, and others), or have an annotated controller that returns an org.springframework.core.io.Resource. Spring Boot applications that depend on spring-boot-starter-web or spring-boot-starter-webflux are ready to serve static resources out of the box and are therefore vulnerable.

Aliases

alias	CVE-2018-15756

alias	GHSA-ffvq-7w96-97p7

Fixed_packages

url	pkg:deb/debian/libspring-java@4.3.21-1?distro=trixie
purl	pkg:deb/debian/libspring-java@4.3.21-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.21-1%3Fdistro=trixie

url pkg:deb/debian/libspring-java@4.3.22-4

purl pkg:deb/debian/libspring-java@4.3.22-4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.22-4

url	pkg:deb/debian/libspring-java@4.3.30-1?distro=trixie
purl	pkg:deb/debian/libspring-java@4.3.30-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.30-1%3Fdistro=trixie

url	pkg:deb/debian/libspring-java@4.3.30-2?distro=trixie
purl	pkg:deb/debian/libspring-java@4.3.30-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.30-2%3Fdistro=trixie

url	pkg:deb/debian/libspring-java@4.3.30-3?distro=trixie
purl	pkg:deb/debian/libspring-java@4.3.30-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.30-3%3Fdistro=trixie

url	pkg:deb/debian/libspring-java@4.3.30-4?distro=trixie
purl	pkg:deb/debian/libspring-java@4.3.30-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.30-4%3Fdistro=trixie

url pkg:maven/org.springframework/spring-core@4.3.20.RELEASE

purl pkg:maven/org.springframework/spring-core@4.3.20.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6ysx-5wcw-f7b5

vulnerability	VCID-c74k-e1me-pfb2

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-k17s-ttg2-ubgj

vulnerability	VCID-w6br-v2gm-j7gr

vulnerability	VCID-y3uz-etva-sufh

vulnerability	VCID-z3th-j593-m7bg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@4.3.20.RELEASE

url pkg:maven/org.springframework/spring-core@5.0.10.RELEASE

purl pkg:maven/org.springframework/spring-core@5.0.10.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6ysx-5wcw-f7b5

vulnerability	VCID-c74k-e1me-pfb2

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-f3g5-hamr-6yar

vulnerability	VCID-k17s-ttg2-ubgj

vulnerability	VCID-w6br-v2gm-j7gr

vulnerability	VCID-y3uz-etva-sufh

vulnerability	VCID-z3th-j593-m7bg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.0.10.RELEASE

url pkg:maven/org.springframework/spring-core@5.1.1.RELEASE

purl pkg:maven/org.springframework/spring-core@5.1.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6ysx-5wcw-f7b5

vulnerability	VCID-c74k-e1me-pfb2

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-f3g5-hamr-6yar

vulnerability	VCID-k17s-ttg2-ubgj

vulnerability	VCID-w6br-v2gm-j7gr

vulnerability	VCID-y3uz-etva-sufh

vulnerability	VCID-z3th-j593-m7bg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.1.1.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.20.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.20.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.20.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.10.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.10.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.10.RELEASE

url pkg:maven/org.springframework/spring-web@5.1.1.RELEASE

purl pkg:maven/org.springframework/spring-web@5.1.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.1.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.10.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.10.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.10.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.1.1.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.1.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.1.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.20.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.20.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.20.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.10.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.10.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.10.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.1.1.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.1.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

vulnerability	VCID-zdpx-scsg-uyfw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.1.RELEASE

Affected_packages

url pkg:deb/debian/libspring-java@3.0.6.RELEASE-6%2Bdeb7u3

purl pkg:deb/debian/libspring-java@3.0.6.RELEASE-6%2Bdeb7u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2nff-p7we-tuax

vulnerability	VCID-4sj2-j914-9yfb

vulnerability	VCID-53gt-nbgk-hyc2

vulnerability	VCID-9v66-xp9z-8kea

vulnerability	VCID-ajex-5x84-8ygb

vulnerability	VCID-asmf-3c71-gqcb

vulnerability	VCID-bpme-zq57-4uh7

vulnerability	VCID-dfs4-emmn-f3eb

vulnerability	VCID-e7xv-sdvz-g7e4

vulnerability	VCID-ec6g-dnjb-vycb

vulnerability	VCID-eer8-apxc-2ue6

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-mvx7-2y3s-fbbb

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-qpxj-fzta-v7bs

vulnerability	VCID-r384-aque-vqcw

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-vkf8-5z5m-wqc7

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@3.0.6.RELEASE-6%252Bdeb7u3

url pkg:deb/debian/libspring-java@3.0.6.RELEASE-17

purl pkg:deb/debian/libspring-java@3.0.6.RELEASE-17

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2nff-p7we-tuax

vulnerability	VCID-4sj2-j914-9yfb

vulnerability	VCID-53gt-nbgk-hyc2

vulnerability	VCID-9v66-xp9z-8kea

vulnerability	VCID-bpme-zq57-4uh7

vulnerability	VCID-dfs4-emmn-f3eb

vulnerability	VCID-ec6g-dnjb-vycb

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-qpxj-fzta-v7bs

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@3.0.6.RELEASE-17

url pkg:deb/debian/libspring-java@4.3.5-1

purl pkg:deb/debian/libspring-java@4.3.5-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4sj2-j914-9yfb

vulnerability	VCID-bpme-zq57-4uh7

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-qpxj-fzta-v7bs

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.5-1

url pkg:maven/org.springframework/spring-core@4.2.0.RELEASE

purl pkg:maven/org.springframework/spring-core@4.2.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3rev-eg6f-tkb7

vulnerability	VCID-6ysx-5wcw-f7b5

vulnerability	VCID-c74k-e1me-pfb2

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-dfs4-emmn-f3eb

vulnerability	VCID-f3g5-hamr-6yar

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-k17s-ttg2-ubgj

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-pz7c-p4ze-kfhc

vulnerability	VCID-w6br-v2gm-j7gr

vulnerability	VCID-y3uz-etva-sufh

vulnerability	VCID-z3th-j593-m7bg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@4.2.0.RELEASE

url pkg:maven/org.springframework/spring-core@5.0.0.RELEASE

purl pkg:maven/org.springframework/spring-core@5.0.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3rev-eg6f-tkb7

vulnerability	VCID-6ysx-5wcw-f7b5

vulnerability	VCID-c74k-e1me-pfb2

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-f3g5-hamr-6yar

vulnerability	VCID-k17s-ttg2-ubgj

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-qpxj-fzta-v7bs

vulnerability	VCID-w6br-v2gm-j7gr

vulnerability	VCID-y3uz-etva-sufh

vulnerability	VCID-z3th-j593-m7bg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.0.0.RELEASE

url pkg:maven/org.springframework/spring-core@5.1.0.RELEASE

purl pkg:maven/org.springframework/spring-core@5.1.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6ysx-5wcw-f7b5

vulnerability	VCID-c74k-e1me-pfb2

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-f3g5-hamr-6yar

vulnerability	VCID-k17s-ttg2-ubgj

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-w6br-v2gm-j7gr

vulnerability	VCID-y3uz-etva-sufh

vulnerability	VCID-z3th-j593-m7bg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-core@5.1.0.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.0.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-ec6g-dnjb-vycb

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.0.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.1.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-ec6g-dnjb-vycb

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.1.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.2.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.2.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.3.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.3.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.4.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.4.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.5.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.5.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.6.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.6.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.7.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.7.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.8.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.8.RELEASE

url pkg:maven/org.springframework/spring-web@4.2.9.RELEASE

purl pkg:maven/org.springframework/spring-web@4.2.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.2.9.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.0.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.0.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.1.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.1.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.2.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.2.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.3.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.3.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.4.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.4.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.5.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.5.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.6.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.6.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.7.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.7.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.8.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.8.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.9.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.9.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.10.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.10.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.10.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.11.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.11.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.11.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.12.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.12.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.12.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.13.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.13.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.13.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.14.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.14.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.14.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.15.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.15.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.15.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.16.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.16.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.16.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.17.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.17.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.17.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.18.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.18.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.18.RELEASE

url pkg:maven/org.springframework/spring-web@4.3.19.RELEASE

purl pkg:maven/org.springframework/spring-web@4.3.19.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@4.3.19.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.0.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.0.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.1.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.1.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.2.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.2.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.3.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.3.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.4.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.4.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.5.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.5.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.6.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-mqnn-spsw-8fg5

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-tu1q-zbk1-hbdm

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.6.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.7.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.7.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.8.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.8.RELEASE

url pkg:maven/org.springframework/spring-web@5.0.9.RELEASE

purl pkg:maven/org.springframework/spring-web@5.0.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5ng1-3a32-cugs

vulnerability	VCID-kpma-e8rd-b7c8

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-x5w8-j62d-m7h6

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.9.RELEASE

url pkg:maven/org.springframework/spring-web@5.1.RELEASE

purl pkg:maven/org.springframework/spring-web@5.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pht6-8af8-b3f2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.RELEASE

url pkg:maven/org.springframework/spring-webflux@4.2.0.RELEASE

purl pkg:maven/org.springframework/spring-webflux@4.2.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pht6-8af8-b3f2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@4.2.0.RELEASE

url pkg:maven/org.springframework/spring-webflux@4.2.9.RELEASE

purl pkg:maven/org.springframework/spring-webflux@4.2.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@4.2.9.RELEASE

url pkg:maven/org.springframework/spring-webflux@4.3.0.RELEASE

purl pkg:maven/org.springframework/spring-webflux@4.3.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@4.3.0.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.0.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.0.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.1.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.1.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.2.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.2.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.3.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.3.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.4.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.4.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.5.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.5.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.6.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.6.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.7.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.7.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.8.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.8.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.0.9.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.0.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.9.RELEASE

url pkg:maven/org.springframework/spring-webflux@5.1.RELEASE

purl pkg:maven/org.springframework/spring-webflux@5.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pht6-8af8-b3f2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.0.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.0.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.1.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.1.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.2.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.2.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.3.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.3.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.4.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.4.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.5.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.5.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.6.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.6.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.7.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.7.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.8.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.8.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.2.9.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.2.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.2.9.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.0.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.0.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.1.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.1.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.2.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.2.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.3.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.3.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.4.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-j3wr-npbv-8qcw

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.4.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.5.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.5.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.6.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.6.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.7.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.7.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.8.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.8.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.9.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.9.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.10.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.10.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.10.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.11.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.11.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.11.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.12.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.12.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.12.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.13.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.13.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.13.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.14.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.14.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.14.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.15.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.15.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.15.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.16.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.16.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.16.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.17.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.17.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.17.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.18.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.18.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.18.RELEASE

url pkg:maven/org.springframework/spring-webmvc@4.3.19.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@4.3.19.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@4.3.19.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.0.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.0.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.1.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.1.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.2.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.2.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.3.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.3.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.4.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-fv26-nhx4-dqd3

vulnerability	VCID-pb7f-yasx-17ag

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.4.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.5.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.5.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.6.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.6.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.7.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.7.RELEASE

url pkg:maven/org.springframework/spring-webmvc@5.0.8.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.8.RELEASE

100

url pkg:maven/org.springframework/spring-webmvc@5.0.9.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.0.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-cyjt-4vjn-mbc7

vulnerability	VCID-pht6-8af8-b3f2

vulnerability	VCID-u7kk-c6fm-judy

vulnerability	VCID-y3uz-etva-sufh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.9.RELEASE

101

url pkg:maven/org.springframework/spring-webmvc@5.1.RELEASE

purl pkg:maven/org.springframework/spring-webmvc@5.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pht6-8af8-b3f2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.RELEASE

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15756.json

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15756.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-15756

reference_id

reference_type

scores

value	0.18104
scoring_system	epss
scoring_elements	0.95179
published_at	2026-04-13T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95177
published_at	2026-04-12T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95176
published_at	2026-04-11T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.9517
published_at	2026-04-09T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95166
published_at	2026-04-08T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95158
published_at	2026-04-07T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95156
published_at	2026-04-04T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95154
published_at	2026-04-02T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95144
published_at	2026-04-01T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95195
published_at	2026-04-26T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95192
published_at	2026-04-24T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95191
published_at	2026-04-18T12:55:00Z

value	0.18104
scoring_system	epss
scoring_elements	0.95187
published_at	2026-04-16T12:55:00Z

value	0.20127
scoring_system	epss
scoring_elements	0.95533
published_at	2026-05-11T12:55:00Z

value	0.20127
scoring_system	epss
scoring_elements	0.95528
published_at	2026-05-09T12:55:00Z

value	0.20127
scoring_system	epss
scoring_elements	0.95522
published_at	2026-05-07T12:55:00Z

value	0.20127
scoring_system	epss
scoring_elements	0.95517
published_at	2026-05-05T12:55:00Z

value	0.20127
scoring_system	epss
scoring_elements	0.95508
published_at	2026-04-29T12:55:00Z

value	0.20127
scoring_system	epss
scoring_elements	0.95537
published_at	2026-05-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-15756

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15756
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15756

reference_url

https://github.com/spring-projects/spring-framework

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/spring-projects/spring-framework

reference_url	https://github.com/spring-projects/spring-framework/commit/044772641d12b9281185f6cf50f8485b8747132
reference_id
reference_type
scores
url	https://github.com/spring-projects/spring-framework/commit/044772641d12b9281185f6cf50f8485b8747132

reference_url	https://github.com/spring-projects/spring-framework/commit/423aa28ed584b4ff6e5bad218c09beef5e91951
reference_id
reference_type
scores
url	https://github.com/spring-projects/spring-framework/commit/423aa28ed584b4ff6e5bad218c09beef5e91951

reference_url	https://github.com/spring-projects/spring-framework/commit/c8e320019ffe7298fc4cbeeb194b2bfd6389b6d
reference_id
reference_type
scores
url	https://github.com/spring-projects/spring-framework/commit/c8e320019ffe7298fc4cbeeb194b2bfd6389b6d

reference_url

https://lists.apache.org/thread.html/339fd112517e4873695b5115b96acdddbfc8f83b10598528d37c7d12@%3Cissues.activemq.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/339fd112517e4873695b5115b96acdddbfc8f83b10598528d37c7d12@%3Cissues.activemq.apache.org%3E

reference_url

https://lists.apache.org/thread.html/77886fec378ee6064debb1efb6b464a4a0173b2ff0d151ed86d3a228@%3Cissues.activemq.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/77886fec378ee6064debb1efb6b464a4a0173b2ff0d151ed86d3a228@%3Cissues.activemq.apache.org%3E

reference_url

https://lists.apache.org/thread.html/7b156ee50ba3ecce87b33c06bf7a749d84ffee55e69bfb5eca88fcc3@%3Cissues.activemq.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/7b156ee50ba3ecce87b33c06bf7a749d84ffee55e69bfb5eca88fcc3@%3Cissues.activemq.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8a1fe70534fc52ff5c9db5ac29c55657f802cbefd7e9d9850c7052bd@%3Cissues.activemq.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8a1fe70534fc52ff5c9db5ac29c55657f802cbefd7e9d9850c7052bd@%3Cissues.activemq.apache.org%3E

reference_url

https://lists.apache.org/thread.html/a3071e11c6fbd593022074ec1b4693f6d948c2b02cfa4a5d854aed68@%3Cissues.activemq.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/a3071e11c6fbd593022074ec1b4693f6d948c2b02cfa4a5d854aed68@%3Cissues.activemq.apache.org%3E

reference_url

https://lists.apache.org/thread.html/bb354962cb51fff65740d5fb1bc2aac56af577c06244b57c36f98e4d@%3Cissues.activemq.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/bb354962cb51fff65740d5fb1bc2aac56af577c06244b57c36f98e4d@%3Cissues.activemq.apache.org%3E

reference_url

https://lists.apache.org/thread.html/d6a84f52db89804b0ad965f3ea2b24bb880edee29107a1c5069cc3dd@%3Cissues.activemq.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/d6a84f52db89804b0ad965f3ea2b24bb880edee29107a1c5069cc3dd@%3Cissues.activemq.apache.org%3E

reference_url

https://lists.apache.org/thread.html/efaa52b0aa67aae7cbd9e6ef96945387e422d7ce0e65434570a37b1d@%3Cissues.activemq.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/efaa52b0aa67aae7cbd9e6ef96945387e422d7ce0e65434570a37b1d@%3Cissues.activemq.apache.org%3E

reference_url

https://lists.apache.org/thread.html/f8905507a2c94af6b08b72d7be0c4b8c6660e585f00abfafeccc86bc@%3Cissues.activemq.apache.org%3E

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/f8905507a2c94af6b08b72d7be0c4b8c6660e585f00abfafeccc86bc@%3Cissues.activemq.apache.org%3E

reference_url

https://lists.debian.org/debian-lts-announce/2021/04/msg00022.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2021/04/msg00022.html

reference_url

https://www.oracle.com/security-alerts/cpuapr2020.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpuapr2020.html

reference_url

https://www.oracle.com/security-alerts/cpujan2020.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpujan2020.html

reference_url

https://www.oracle.com/security-alerts/cpujan2021.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpujan2021.html

reference_url

https://www.oracle.com/security-alerts/cpujul2020.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpujul2020.html

reference_url

https://www.oracle.com//security-alerts/cpujul2021.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com//security-alerts/cpujul2021.html

reference_url

https://www.oracle.com/security-alerts/cpuoct2021.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpuoct2021.html

reference_url

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

reference_url

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

reference_url

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

reference_url

http://www.securityfocus.com/bid/105703

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/105703

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1643043
reference_id	1643043
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1643043

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911786
reference_id	911786
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911786

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-15756

reference_id

CVE-2018-15756

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2018-15756

reference_url

https://pivotal.io/security/cve-2018-15756

reference_id

CVE-2018-15756

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://pivotal.io/security/cve-2018-15756

reference_url

https://github.com/advisories/GHSA-ffvq-7w96-97p7

reference_id

GHSA-ffvq-7w96-97p7

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-ffvq-7w96-97p7

reference_url	https://access.redhat.com/errata/RHSA-2020:0983
reference_id	RHSA-2020:0983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:0983

reference_url	https://access.redhat.com/errata/RHSA-2020:3133
reference_id	RHSA-2020:3133
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3133

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	20
name	Improper Input Validation
description	The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Exploits

Severity_range_score 3.1 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pht6-8af8-b3f2

Vulnerability Instance