CVE-2024-38808

NVD Published Date: August 20, 2024 at 08:15 AM
NVD Last Modified: August 20, 2024 at 03:44 PM
Download Patch
Vulnerability ID
CVE-2024-38808
Severity
None
Severity Score
None
Summary
In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it is possible for a user to provide a specially crafted Spring Expression Language (SpEL) expression that may cause a denial of service (DoS) condition. Specifically, an application is vulnerable when the following is true: * The application evaluates user-supplied SpEL expressions.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
None
CWE ID
None

Recent Publish

CVE-2024-43202

CVE-2024-28829

CVE-2024-21689

CVE-2024-7054

CVE-2024-41699

CVE-2024-41700

See SecOps Solution
in action

Schedule Demo