Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Spring Boot server Web Observations DoS Vulnerability
Vulnerability Description
In Spring Boot versions 2.7.0 - 2.7.17, 3.0.0-3.0.12 and 3.1.0-3.1.5, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of-service (DoS) condition. Specifically, an application is vulnerable when all of the following are true: * the application uses Spring MVC or Spring WebFlux * org.springframework.boot:spring-boot-actuator is on the classpath
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
N/A
Vulnerability Title
VMware Spring Boot 安全漏洞
Vulnerability Description
VMware Spring Boot是美国威睿(VMware)公司的一套开源框架。 VMware Spring Boot 存在安全漏洞,该漏洞源于允许攻击者通过特制的HTTP请求导致拒绝服务(DOS)。受影响的产品和版本:Spring Boot 2.7.0至2.7.17版本,3.0.0至3.0.12版本,3.1.0至3.1.5版本。
CVSS Information
N/A
Vulnerability Type
N/A