-
Bug
-
Resolution: Done
-
Medium
-
Dublin Release
-
SDNC Dublin Spr 3 3/11 - 3/29, SDNC El Alto Sprint 1
Spring-core versions prior to 4.3.15.RELEASE are vulnerable to the following CVE:
https://nvd.nist.gov/vuln/detail/CVE-2018-1272
spring-expression versions prior to 4.3.15.RELEASE are vulnerable to the following CVEs:
https://nvd.nist.gov/vuln/detail/CVE-2018-1270
https://nvd.nist.gov/vuln/detail/CVE-2018-1257
spring-web versions prior to 4.3.20.RELEASE are vulnerable to the following CVEs:
https://nvd.nist.gov/vuln/detail/CVE-2018-15756
https://nvd.nist.gov/vuln/detail/CVE-2018-11039
https://nvd.nist.gov/vuln/detail/CVE-2018-11040
spring-webmvc versions prior to 4.3.18.RELEASE are vulnerable to the following CVEs:
https://nvd.nist.gov/vuln/detail/CVE-2018-11040
https://nvd.nist.gov/vuln/detail/CVE-2018-1271