pkg:maven/org.springframework.data/spring-data-rest-core
Type
maven
Namespace
org.springframework.data
Name
spring-data-rest-core
Known advisories, vulnerabilities and fixes for org.springframework.data/spring-data-rest-core package.
Critical
1
Moderate
1
Low
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | >= 3.5.0, <= 3.5.5 >= 3.4.0, <= 3.4.13 |
CVE-2021-22047
|
 MAVEN:GHSA-4926-QPXG-6R3W
|
Exposure of Resource to Wrong Sphere in Spring Data REST | moderate |
2022-05-24T19:19:03
(2 years ago) |
|
| Fixed | = 3.5.6 = 3.4.14 |
CVE-2021-22047
|
MAVEN:GHSA-4926-QPXG-6R3W
|
Exposure of Resource to Wrong Sphere in Spring Data REST | moderate |
2022-05-24T19:19:03
(2 years ago) |
|
| Affected | >= 3.0.0, < 3.0.1.RELEASE < 2.6.9.RELEASE |
CVE-2017-8046
|
MAVEN:GHSA-9QF9-28H9-HQCJ
|
Remote code execution in PATCH requests in Spring Data REST | critical |
2022-05-13T01:02:43
(2 years ago) |
|
| Fixed | = 3.0.1.RELEASE = 2.6.9.RELEASE |
CVE-2017-8046
|
MAVEN:GHSA-9QF9-28H9-HQCJ
|
Remote code execution in PATCH requests in Spring Data REST | critical |
2022-05-13T01:02:43
(2 years ago) |
|
| Affected | >= 3.7.0, < 3.7.3 >= 3.6.0, < 3.6.7 |
CVE-2022-31679
|
MAVEN:GHSA-FV7X-V67W-CVQV
|
Spring Data REST can expose hidden entity attributes | low |
2022-09-22T00:00:24
(2 years ago) |
|
| Fixed | = 3.7.3 = 3.6.7 |
CVE-2022-31679
|
MAVEN:GHSA-FV7X-V67W-CVQV
|
Spring Data REST can expose hidden entity attributes | low |
2022-09-22T00:00:24
(2 years ago) |