Closed joewragg closed 1 month ago
pom.xml
https://avd.aquasec.com/nvd/cve-2024-22259
org.springframework:spring-web
Severity: HIGH Installed version: 6.0.14 Fixed versions: 6.1.5, 6.0.18, 5.3.33 Description: springframework: URL Parsing with Host Validation
Fixed via https://github.com/GIScience/openrouteservice/pull/1788
aoles
commented
1 month ago aoles
commented
1 month ago
Scope
pom.xml
Report Link
https://avd.aquasec.com/nvd/cve-2024-22259
Dependency affected
org.springframework:spring-web
Proposed solution / further info
Severity: HIGH Installed version: 6.0.14 Fixed versions: 6.1.5, 6.0.18, 5.3.33 Description: springframework: URL Parsing with Host Validation