Search for packages
| purl | pkg:maven/org.springframework/spring-webmvc@5.3.35 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-33up-jmsk-qffx
Aliases: CVE-2026-22745 GHSA-6p4f-wcwh-5vvm |
spring-webflux: Spring MVC and Spring WebFlux: Denial of Service via slow static resource resolution on Windows |
Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-nbvf-8qas-g3f8
Aliases: CVE-2024-38828 GHSA-w3c8-7r8f-9jp8 |
Spring MVC controller vulnerable to a DoS attack Spring MVC controller methods with an @RequestBody byte[] method parameter are vulnerable to a DoS attack. |
Affected by 0 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-xrqe-h6t7-nkak
Aliases: CVE-2026-22741 GHSA-wg35-8jpf-2xv3 |
Spring MVC: Spring WebFlux: Spring MVC and Spring WebFlux: Denial of Service via cache poisoning |
Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-06T08:20:05.494359+00:00 | GitLab Importer | Affected by | VCID-33up-jmsk-qffx | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-webmvc/CVE-2026-22745.yml | 38.6.0 |
| 2026-06-06T08:18:43.545605+00:00 | GitLab Importer | Affected by | VCID-xrqe-h6t7-nkak | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-webmvc/CVE-2026-22741.yml | 38.6.0 |
| 2026-06-06T05:31:45.260567+00:00 | GitLab Importer | Affected by | VCID-nbvf-8qas-g3f8 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-webmvc/CVE-2024-38828.yml | 38.6.0 |