Spring Framework < 5.3.41 / 6.0.x < 6.0.25 / 6.1.x < 6.1.14 の複数の脆弱性

Language:

バージョン 1.2 Oct 28, 2024, 9:20 AM CVSS metrics ("CVSSv3 score" set to 5.3) CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C") CVSSv3 score source (set to "CVE-2024-38820") CVSSv3 severity (based on CVE-2024-38820, severity decreased from "High" to "Medium") Exploit attributes ("Exploit available" set to "False") Exploit attributes ("Exploitability ease" set to "No known exploits are available") Plugin Feed: 202410280920
バージョン 1.1 Oct 25, 2024, 10:52 AM New Plugin Feed: 202410251052

* Changelogs are generally available for changes made after Nov 1, 2022