CVE-2024-38809 | Vmware Spring Framework up to 5.3.37/6.0.22/6.1.11 Conditional HTTP Request ETags denial of service

Inserito da Angelo Barbosa | Set 25, 2024 | CVE

A vulnerability classified as critical has been found in Vmware Spring Framework up to 5.3.37/6.0.22/6.1.11. Affected is an unknown function of the component Conditional HTTP Request Handler. The manipulation of the argument ETags leads to denial of service.

This vulnerability is traded as CVE-2024-38809. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38809 | Vmware Spring Framework up to 5.3.37/6.0.22/6.1.11 Conditional HTTP Request ETags denial of service

Post correlati

CVE-2023-6798 | Feedzy RSS Aggregator Plugin up to 4.3.2 on WordPress authorization

CVE-2024-3293 | rtMedia for BuddyPress and bbPress Plugin up to 4.6.18 on WordPress rtmedia_gallery sql injection

CVE-2024-32418 | flusity CMS 2.33 add_addon.php Privilege Escalation

CVE-2023-50465 | Monica 4.0.0 SVG Document cross site scripting