Vulnerability Database
289,599
Total vulnerabilities in the database
CVE-2021-22096
In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries.
| Software | From | Fixed in |
|---|---|---|
| vmware / spring_framework | 5.2.0 | 5.2.17.x |
| vmware / spring_framework | 5.3.0 | 5.3.10.x |
| oracle / communications_cloud_native_core_console | 1.9.0 | 1.9.0.x |
| oracle / communications_cloud_native_core_service_communication_proxy | 1.15.0 | 1.15.0.x |
org.springframework / spring-core
|
5.3.0 | 5.3.11 |
|
org.springframework / spring-core
|
5.2.0 | 5.2.18 |