Vulnerabilidades em Spring by VMware
10 resultadosCVE-2020-5410HIGHDirectory Traversal with spring-cloud-config-serverEPSS 95.6%KEVCVE-2020-5405—Directory Traversal with spring-cloud-config-serverEPSS 68.5%CVE-2020-5421HIGHRFD Protection Bypass via jsessionidEPSS 10.7%CVE-2020-5412—Hystrix Dashboard Proxy In spring-cloud-netflix-hystrix-dashboardEPSS 10.2%CVE-2020-5413—Kryo Configuration Allows Code Execution with Unknown "Serialization Gadgets"EPSS 4.4%CVE-2020-5411—Jackson Configuration Allows Code Execution with Unknown "Serialization Gadgets"EPSS 1.9%CVE-2020-5408—Dictionary attack with Spring Security queryable text encryptorEPSS 1.8%CVE-2020-5407—Signature Wrapping Vulnerability with spring-security-saml2-service-providerEPSS 1.2%CVE-2020-5427MEDIUMPossibility of SQL Injection in Spring Cloud Data Flow Task Execution Sorting QueryEPSS 1.1%CVE-2020-5428MEDIUMPossibility of SQL Injection in Spring Cloud Task Execution Sorting QueryEPSS 0.5%