VulnerableCode Vulnerability Details - VCID-f7wb-7shx-abe2

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-f7wb-7shx-abe2

Essentials
Severities (12)
References (19)
Severity details (9)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-f7wb-7shx-abe2
Aliases	CVE-2014-0054 GHSA-8cmm-qj8g-fcp6
Summary
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-352	Cross-Site Request Forgery (CSRF)
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	MODERATE	http://rhn.redhat.com/errata/RHSA-2014-0400.html
epss	0.02548	https://api.first.org/data/v1/epss?cve=CVE-2014-0054
epss	0.02548	https://api.first.org/data/v1/epss?cve=CVE-2014-0054
epss	0.02548	https://api.first.org/data/v1/epss?cve=CVE-2014-0054
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-8cmm-qj8g-fcp6
generic_textual	MODERATE	https://github.com/spring-projects/spring-framework/commit/1a8629d40825c073b6863ae2ab748b647b28506a
generic_textual	MODERATE	https://github.com/spring-projects/spring-framework/commit/1c5cab2a4069ec3239c531d741aeb07a434f521b
generic_textual	MODERATE	https://github.com/spring-projects/spring-framework/commit/edba32b3093703d5e9ed42b5b8ec23ecc1998398
generic_textual	MODERATE	https://github.com/spring-projects/spring-framework/commit/fb0683c066e74e9667d6cd8c5fa01f674c68c3be
generic_textual	MODERATE	https://github.com/spring-projects/spring-framework/issues/16003
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2014-0054
generic_textual	MODERATE	http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

Reference id	Reference type	URL
		http://rhn.redhat.com/errata/RHSA-2014-0400.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0054.json
		https://api.first.org/data/v1/epss?cve=CVE-2014-0054
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0054
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1904
		https://github.com/spring-projects/spring-framework/commit/1a8629d40825c073b6863ae2ab748b647b28506a
		https://github.com/spring-projects/spring-framework/commit/1c5cab2a4069ec3239c531d741aeb07a434f521b
		https://github.com/spring-projects/spring-framework/commit/edba32b3093703d5e9ed42b5b8ec23ecc1998398
		https://github.com/spring-projects/spring-framework/commit/fb0683c066e74e9667d6cd8c5fa01f674c68c3be
		https://github.com/spring-projects/spring-framework/issues/16003
		https://jira.spring.io/browse/SPR-11376
		http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0054
1075328		https://bugzilla.redhat.com/show_bug.cgi?id=1075328
741604		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741604
CVE-2014-0054		https://nvd.nist.gov/vuln/detail/CVE-2014-0054
CVE-2014-0054		http://www.pivotal.io/security/cve-2014-0054
GHSA-8cmm-qj8g-fcp6		https://github.com/advisories/GHSA-8cmm-qj8g-fcp6
RHSA-2014:0400		https://access.redhat.com/errata/RHSA-2014:0400
RHSA-2014:0401		https://access.redhat.com/errata/RHSA-2014:0401

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.85802
EPSS Score	0.02548
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-10T18:20:08.747034+00:00	ProjectKB MSRImporter	Import	https://raw.githubusercontent.com/SAP/project-kb/master/MSR2019/dataset/vulas_db_msr2019_release.csv	38.6.0