Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.springframework/spring-webmvc@6.2.18
purl pkg:maven/org.springframework/spring-webmvc@6.2.18
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-33up-jmsk-qffx spring-webflux: Spring MVC and Spring WebFlux: Denial of Service via slow static resource resolution on Windows CVE-2026-22745
GHSA-6p4f-wcwh-5vvm
VCID-xrqe-h6t7-nkak Spring MVC: Spring WebFlux: Spring MVC and Spring WebFlux: Denial of Service via cache poisoning CVE-2026-22741
GHSA-wg35-8jpf-2xv3

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-07T20:54:22.051128+00:00 GHSA Importer Fixing VCID-33up-jmsk-qffx https://github.com/advisories/GHSA-6p4f-wcwh-5vvm 38.6.0
2026-06-07T20:54:21.840562+00:00 GHSA Importer Fixing VCID-xrqe-h6t7-nkak https://github.com/advisories/GHSA-wg35-8jpf-2xv3 38.6.0
2026-06-06T08:20:05.854893+00:00 GitLab Importer Fixing VCID-33up-jmsk-qffx https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-webmvc/CVE-2026-22745.yml 38.6.0
2026-06-06T08:18:43.917605+00:00 GitLab Importer Fixing VCID-xrqe-h6t7-nkak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.springframework/spring-webmvc/CVE-2026-22741.yml 38.6.0
2026-06-04T16:53:57.375196+00:00 GithubOSV Importer Fixing VCID-33up-jmsk-qffx https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-6p4f-wcwh-5vvm/GHSA-6p4f-wcwh-5vvm.json 38.6.0
2026-06-04T16:52:51.778358+00:00 GithubOSV Importer Fixing VCID-xrqe-h6t7-nkak https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-wg35-8jpf-2xv3/GHSA-wg35-8jpf-2xv3.json 38.6.0