Search for packages
| purl | pkg:maven/org.springframework/spring-web@6.1.12 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-7mrx-1x83-uugp | Spring Framework DoS via conditional HTTP request Applications that parse ETags from `If-Match` or `If-None-Match` request headers are vulnerable to DoS attack. |
CVE-2024-38809
GHSA-2rmj-mq67-h97g |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-05T21:48:58.977116+00:00 | GHSA Importer | Fixing | VCID-7mrx-1x83-uugp | https://github.com/advisories/GHSA-2rmj-mq67-h97g | 38.6.0 |
| 2026-06-04T16:45:24.352988+00:00 | GithubOSV Importer | Fixing | VCID-7mrx-1x83-uugp | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/09/GHSA-2rmj-mq67-h97g/GHSA-2rmj-mq67-h97g.json | 38.6.0 |
| 2026-06-04T16:22:18.952992+00:00 | GitLab Importer | Fixing | VCID-7mrx-1x83-uugp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-web/CVE-2024-38809.yml | 38.6.0 |