Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-g7ce-fs6u-abdp

Summary Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), versions prior to 3.0.1 (Kay SR1) and Spring Boot versions prior to 1.5.9, 2.0 M6 can use specially crafted JSON data to run arbitrary Java code.

Aliases

alias	CVE-2017-8046

alias	GHSA-9qf9-28h9-hqcj

Fixed_packages

url pkg:maven/org.springframework.boot/spring-boot@1.5.9.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.9.RELEASE

url	pkg:maven/org.springframework.data/spring-data-rest-core@2.6.9.RELEASE
purl	pkg:maven/org.springframework.data/spring-data-rest-core@2.6.9.RELEASE
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.9.RELEASE

url	pkg:maven/org.springframework.data/spring-data-rest-core@3.0.1.RELEASE
purl	pkg:maven/org.springframework.data/spring-data-rest-core@3.0.1.RELEASE
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@3.0.1.RELEASE

Affected_packages

url pkg:maven/org.springframework.boot/spring-boot@1.0.0.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.0.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.0.0.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.0.1.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.0.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.0.1.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.0.2.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.0.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.0.2.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.0.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.0.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.1.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.1.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.2.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.2.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.3.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.3.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.4.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.4.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.5.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.5.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.6.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.6.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.7.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.7.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.8.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.8.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.9.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.9.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.10.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.10.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.10.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.11.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.11.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.11.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.1.12.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.1.12.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.1.12.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.2.0.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.2.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.0.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.2.1.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.2.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.1.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.2.2.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.2.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.2.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.2.3.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.2.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.3.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.2.4.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.2.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.4.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.2.5.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.2.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.5.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.2.6.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.2.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.6.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.2.7.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.2.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.7.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.2.8.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.2.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.2.8.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.3.0.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.3.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.0.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.3.1.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.3.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-7u71-ndsy-8yh9

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.1.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.3.2.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.3.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.2.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.3.3.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.3.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.3.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.3.4.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.3.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.4.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.3.5.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.3.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.5.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.3.6.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.3.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.6.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.3.7.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.3.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.7.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.3.8.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.3.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.3.8.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.4.0.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.4.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.0.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.4.1.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.4.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.1.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.4.2.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.4.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.2.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.4.3.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.4.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.3.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.4.4.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.4.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.4.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.4.5.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.4.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.5.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.4.6.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.4.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.6.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.4.7.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.4.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.4.7.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.5.0.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.0.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.5.1.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.1.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.5.2.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.2.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.5.3.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.3.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.5.4.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.4.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.5.5.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.5.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.5.6.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.6.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.5.7.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.7.RELEASE

url pkg:maven/org.springframework.boot/spring-boot@1.5.8.RELEASE

purl pkg:maven/org.springframework.boot/spring-boot@1.5.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6sye-grs9-dqfh

vulnerability	VCID-g7ce-fs6u-abdp

vulnerability	VCID-hek3-n96t-bydw

vulnerability	VCID-k3fg-3bs3-87b9

vulnerability	VCID-kwk7-s11d-4ygy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.boot/spring-boot@1.5.8.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@1.0.0.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@1.0.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@1.0.0.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.0.0.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.0.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.0.0.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.0.1.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.0.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.0.1.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.0.2.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.0.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.0.2.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.0.3.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.0.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.0.3.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.1.0.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.1.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.1.0.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.1.1.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.1.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.1.1.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.1.2.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.1.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.1.2.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.1.4.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.1.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.1.4.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.1.5.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.1.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.1.5.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.1.6.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.1.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.1.6.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.2.0.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.2.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.2.0.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.2.1.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.2.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.2.1.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.2.2.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.2.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.2.2.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.2.3.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.2.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.2.3.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.2.4.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.2.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.2.4.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.3.0.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.3.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.3.0.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.3.1.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.3.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.3.1.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.3.2.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.3.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.3.2.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.4.0.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.4.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.4.0.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.4.1.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.4.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.4.1.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.4.2.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.4.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.4.2.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.4.4.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.4.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.4.4.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.4.5.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.4.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.4.5.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.4.6.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.4.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.4.6.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.0.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.0.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.1.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.1.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.2.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.2.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.3.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.3.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.4.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.4.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.5.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.5.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.6.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.6.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.7.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.7.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.8.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.8.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.9.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.9.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.9.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.10.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.10.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.10.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.5.11.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.5.11.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.5.11.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.6.0.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.6.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.0.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.6.1.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.6.1.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.1.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.6.2.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.6.2.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.2.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.6.3.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.6.3.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.3.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.6.4.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.6.4.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.4.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.6.5.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.6.5.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.5.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.6.6.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.6.6.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.6.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.6.7.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.6.7.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.7.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@2.6.8.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@2.6.8.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@2.6.8.RELEASE

url pkg:maven/org.springframework.data/spring-data-rest-core@3.0.0-SNAPSHOT

purl pkg:maven/org.springframework.data/spring-data-rest-core@3.0.0-SNAPSHOT

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@3.0.0-SNAPSHOT

url pkg:maven/org.springframework.data/spring-data-rest-core@3.0.0

purl pkg:maven/org.springframework.data/spring-data-rest-core@3.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@3.0.0

url pkg:maven/org.springframework.data/spring-data-rest-core@3.0.0.RELEASE

purl pkg:maven/org.springframework.data/spring-data-rest-core@3.0.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-g7ce-fs6u-abdp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework.data/spring-data-rest-core@3.0.0.RELEASE

References

reference_url

https://access.redhat.com/errata/RHSA-2018:2405

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2018:2405

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8046.json

reference_id

reference_type

scores

value	10.0
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8046.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-8046

reference_id

reference_type

scores

value	0.93978
scoring_system	epss
scoring_elements	0.99892
published_at	2026-04-26T12:55:00Z

value	0.93978
scoring_system	epss
scoring_elements	0.99887
published_at	2026-04-01T12:55:00Z

value	0.93978
scoring_system	epss
scoring_elements	0.99888
published_at	2026-04-04T12:55:00Z

value	0.93978
scoring_system	epss
scoring_elements	0.99889
published_at	2026-04-12T12:55:00Z

value	0.93978
scoring_system	epss
scoring_elements	0.9989
published_at	2026-04-21T12:55:00Z

value	0.93978
scoring_system	epss
scoring_elements	0.99891
published_at	2026-04-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-8046

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1553024

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=1553024

reference_url

https://github.com/spring-projects/spring-data-rest

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/spring-projects/spring-data-rest

reference_url	https://github.com/spring-projects/spring-data-rest/commit/824e51a1304bbc8334ac0b96ffaef588177e6cc
reference_id
reference_type
scores
url	https://github.com/spring-projects/spring-data-rest/commit/824e51a1304bbc8334ac0b96ffaef588177e6cc

reference_url	https://github.com/spring-projects/spring-data-rest/commit/8f269e28fe8038a6c60f31a1c36cfda04795ab45
reference_id
reference_type
scores
url	https://github.com/spring-projects/spring-data-rest/commit/8f269e28fe8038a6c60f31a1c36cfda04795ab45

reference_url

https://github.com/spring-projects/spring-data-rest/issues/1487

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/spring-projects/spring-data-rest/issues/1487

reference_url

https://github.com/spring-projects/spring-data-rest/issues/1520

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/spring-projects/spring-data-rest/issues/1520

reference_url	https://jira.spring.io/browse/DATAREST-1127
reference_id
reference_type
scores
url	https://jira.spring.io/browse/DATAREST-1127

reference_url

https://jira.spring.io/browse/DATAREST-1127?redirect=false

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://jira.spring.io/browse/DATAREST-1127?redirect=false

reference_url	https://jira.spring.io/browse/DATAREST-1152
reference_id
reference_type
scores
url	https://jira.spring.io/browse/DATAREST-1152

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-8046

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2017-8046

reference_url	https://www.exploit-db.com/exploits/44289/
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/44289/

reference_url	http://www.securityfocus.com/bid/100948
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/100948

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest::::::::
reference_id	cpe:2.3:a:pivotal_software:spring_data_rest::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:::::::*
reference_id	cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m1::::::
reference_id	cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m2::::::
reference_id	cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m3::::::
reference_id	cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m4::::::
reference_id	cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m4::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:m4::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:rc1::::::
reference_id	cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:rc1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:rc1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:rc2::::::
reference_id	cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:rc2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:rc2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:rc3::::::
reference_id	cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:rc3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pivotal_software:spring_data_rest:3.0.0:rc3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot::::::::
reference_id	cpe:2.3:a:vmware:spring_boot::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone1::::::
reference_id	cpe:2.3:a:vmware:spring_boot:2.0.0:milestone1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone2::::::
reference_id	cpe:2.3:a:vmware:spring_boot:2.0.0:milestone2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone3::::::
reference_id	cpe:2.3:a:vmware:spring_boot:2.0.0:milestone3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone4::::::
reference_id	cpe:2.3:a:vmware:spring_boot:2.0.0:milestone4::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone4::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone5::::::
reference_id	cpe:2.3:a:vmware:spring_boot:2.0.0:milestone5::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:vmware:spring_boot:2.0.0:milestone5::::::

reference_url	https://github.com/m3ssap0/spring-break_cve-2017-8046
reference_id	CVE-2017-8046
reference_type	exploit
scores
url	https://github.com/m3ssap0/spring-break_cve-2017-8046

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/java/webapps/44289.java
reference_id	CVE-2017-8046
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/java/webapps/44289.java

reference_url

https://pivotal.io/security/cve-2017-8046

reference_id

CVE-2017-8046

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://pivotal.io/security/cve-2017-8046

reference_url

https://github.com/advisories/GHSA-9qf9-28h9-hqcj

reference_id

GHSA-9qf9-28h9-hqcj

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-9qf9-28h9-hqcj

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	20
name	Improper Input Validation
description	The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

date_added	2018-03-15
description	Spring Data REST < 2.6.9 (Ingalls SR9) / 3.0.1 (Kay SR1) - PATCH Request Remote Code Execution
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`false`
source_date_published	2018-03-15
exploit_type	webapps
platform	java
source_date_updated	2018-03-16
data_source	Exploit-DB
source_url	https://github.com/m3ssap0/spring-break_cve-2017-8046

Severity_range_score 7.5 - 10.0

Exploitability 2.0

Weighted_severity 9.0

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g7ce-fs6u-abdp

Vulnerability Instance