Security context
What an agent needs to avoid regressing past fixes — and find the next bug in this project.
Spring Framework
spring-projects/spring-framework Core support for the Spring ecosystem on the JVM.
Maven · org.springframework:spring-core
18
Advisories
18
CVEs
High
Peak severity
15
With fix diff
Distribution
By severity
High
8
Medium
10
By weakness class
Other
9
Auth / Access Control
2
Denial of Service
2
Path Traversal
2
Improper Validation
2
Deserialization
1
Every fixed vulnerability (18)
High8 fixed
HighSpring Framework annotation detection mechanism may result in improper authorizationCVE-2025-4124910mo agoHighSpring Framework server Web DoS VulnerabilityCVE-2024-222332y agoHighImproper Neutralization of Directives in Dynamically Evaluated Code in Spring FrameworkCVE-2011-27304y agoHighDenial of Service in Spring FrameworkCVE-2018-157566y agoHighSpring Security and Spring Framework may not recognize certain paths that should be protectedCVE-2016-50077y agoHighFiles or Directories Accessible to External Parties in org.springframework:spring-coreCVE-2015-52117y agoHighPossible privilege escalation in org.springframework:spring-coreCVE-2018-12727y agoHighSpring Framework when used in combination with any versions of Spring Security contains an authorization bypassCVE-2018-12587y ago
Medium10 fixed
MediumImproper Output Neutralization for Logs in Spring FrameworkCVE-2021-220964y agoMediumSpring Framework and Spring Security vulnerable to Deserialization of Untrusted DataCVE-2011-28944y agoMediumImproper Limitation of a Pathname to a Restricted Directory in Spring FrameworkCVE-2014-35784y agoMediumSpring Framework Inefficient Regular Expression ComplexityCVE-2009-11904y agoMediumLog entry injection in Spring FrameworkCVE-2021-220604y agoMediumModerate severity vulnerability that affects org.springframework:spring-coreCVE-2015-02017y agoMediumPath Traversal in org.springframework:spring-coreCVE-2018-12717y agoMediumDenial of Service in org.springframework:spring-coreCVE-2018-12577y agoMediumImproper Input Validation in org.springframework.security:spring-security-core, org.springframework.security:spring-security-core , and org.springframework:spring-coreCVE-2018-11997y agoMediumModerate severity vulnerability that affects org.springframework:spring-coreCVE-2018-110407y ago