| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2020-5413 | Kryo Configuration Allows Code Execution with Unknown "Serialization Gadgets" | Spring by VMware | Spring Integration | 超危 | - | 2020-07-31 19:40:20 | Deep Dive |
| CVE-2020-5411 | Jackson Configuration Allows Code Execution with Unknown "Serialization Gadgets" | Spring by VMware | Spring Batch | 高危 | - | 2020-06-11 17:00:17 | Deep Dive |
| CVE-2020-5410 | Directory Traversal with spring-cloud-config-server | Spring by VMware | Spring Cloud Config | 高危 | - | 2020-06-02 16:50:12 | Deep Dive |
| CVE-2020-5408 | Dictionary attack with Spring Security queryable text encryptor | Spring by VMware | Spring Security | 中危 | - | 2020-05-14 17:15:13 | Deep Dive |
| CVE-2020-5407 | Signature Wrapping Vulnerability with spring-security-saml2-service-provider | Spring by VMware | Spring Security | 高危 | - | 2020-05-13 17:00:16 | Deep Dive |
| CVE-2020-1022 | Microsoft Dynamics Business Central 注入漏洞 | Microsoft | Microsoft Dynamics NAV 2015 | 高危 | - | 2020-04-15 15:13:28 | Deep Dive |
| CVE-2020-1018 | Microsoft Dynamics Business Central 信息泄露漏洞 | Microsoft | Microsoft Dynamics NAV 2016 | 高危 | - | 2020-04-15 15:13:27 | Deep Dive |
| CVE-2020-0905 | Microsoft Dynamics Business Central 安全漏洞 | Microsoft | Microsoft Dynamics NAV 2018 | 高危 | - | 2020-03-12 15:48:59 | Deep Dive |
| CVE-2020-5405 | Directory Traversal with spring-cloud-config-server | Spring by VMware | Spring Cloud Config | 中危 | - | 2020-03-05 19:00:19 | Deep Dive |
| CVE-2020-5397 | CSRF Attack via CORS Preflight Requests with Spring MVC or Spring WebFlux | Spring | Spring Framework | 中危 | - | 2020-01-17 18:50:13 | Deep Dive |
| CVE-2020-5398 | RFD Attack via "Content-Disposition" Header Sourced from Request Input by Spring MVC or Spring WebFlux Application | Spring | Spring Framework | 高危 | - | 2020-01-16 23:55:16 | Deep Dive |
| CVE-2013-6430 | Pivotal Software Spring Framework‘JavaScriptUtils.javaScriptEscape()’方法跨站脚本漏洞 | Pivotal | Spring MVC | 中危 | - | 2020-01-10 13:28:11 | Deep Dive |
| CVE-2019-11272 | PlaintextPasswordEncoder authenticates encoded passwords that are null | Spring | Spring Security | 高危 | - | 2019-06-26 14:06:15 | Deep Dive |
| CVE-2019-11269 | Open Redirector in spring-security-oauth2 | Spring | Spring Security OAuth | 中危 | - | 2019-06-12 14:46:19 | Deep Dive |
| CVE-2019-3802 | Additional information exposure with Spring Data JPA example matcher | Spring | Spring Data JPA | 中危 | - | 2019-06-03 13:47:43 | Deep Dive |
| CVE-2019-3797 | Additional information exposure with Spring Data JPA derived queries | Spring | Spring Boot | 中危 | - | 2019-05-06 15:21:37 | Deep Dive |
| CVE-2019-3799 | Directory Traversal with spring-cloud-config-server | Spring | Spring Cloud Config | 中危 | - | 2019-05-06 15:21:37 | Deep Dive |
| CVE-2019-3795 | Insecure Randomness When Using a SecureRandom Instance Constructed by Spring Security | Spring | Spring Security | 中危 | - | 2019-04-09 15:29:02 | Deep Dive |
| CVE-2019-3778 | Open Redirect in spring-security-oauth2 | Spring | Spring Security OAuth | 中危 | - | 2019-03-07 19:00:00 | Deep Dive |
| CVE-2019-3772 | Spring Integration XML External Entity Injection (XXE) | Spring | Spring Integration | 超危 | - | 2019-01-18 22:00:00 | Deep Dive |