Spring Data Rest Security Vulnerabilities and Issues — Spring Data Rest CVE List

Lucene search

Pivotal SoftwareSpring Data Rest

2 matches found

CVE•added 2018/04/11 1:29 p.m.•1093 views

CVE-2018-1273

Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property binder vulnerability caused by improper neutralization of special elements. An unauthenticated remote malicious user (or attacker) can supply specially crafted request parameters...

9.8CVSS9.6AI score0.94208EPSS

CVE•added 2018/04/18 4:29 p.m.•98 views

CVE-2018-1274

Spring Data Commons, versions 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property path parser vulnerability caused by unlimited resource allocation. An unauthenticated remote malicious user (or attacker) can issue requests against Spring Data REST endpoints or endpoint...

7.5CVSS7.4AI score0.00972EPSS