Lucene search
Spring Cloud Function Security Vulnerabilities
cve
In Spring Cloud Function versions prior to 3.2.6, it is possible for a user who directly interacts with framework provided lookup functionality to cause a denial-of-service condition due to the caching issue in the Function Catalog component of the...
7.5CVSS
7.5AI Score
0.001EPSS
2022-06-21 03:15 PM
66
5
cve
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local...