org.springframework:spring-core vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2025-41249Highorg.springframework:spring-core: Spring Framework annotation detection mechanism may result in improper authorizationCVE-2024-22233Highorg.springframework:spring-core: Spring Framework server Web DoS VulnerabilityCVE-2021-22096Mediumorg.springframework:spring-core: Improper Output Neutralization for Logs in Spring FrameworkCVE-2011-2730Highorg.springframework:spring-core: Improper Neutralization of Directives in Dynamically Evaluated Code in Spring FrameworkCVE-2011-2894Mediumorg.springframework:spring-core: Spring Framework and Spring Security vulnerable to Deserialization of Untrusted DataCVE-2014-3578Mediumorg.springframework:spring-core: Improper Limitation of a Pathname to a Restricted Directory in Spring FrameworkCVE-2009-1190Mediumorg.springframework:spring-core: Spring Framework Inefficient Regular Expression ComplexityCVE-2021-22060Mediumorg.springframework:spring-core: Log entry injection in Spring FrameworkCVE-2018-15756Highorg.springframework:spring-core: Denial of Service in Spring FrameworkCVE-2016-5007Highorg.springframework:spring-core: Spring Security and Spring Framework may not recognize certain paths that should be protectedCVE-2015-5211Highorg.springframework:spring-core: Files or Directories Accessible to External Parties in org.springframework:spring-coreCVE-2015-0201Mediumorg.springframework:spring-core: Moderate severity vulnerability that affects org.springframework:spring-coreCVE-2018-1272Highorg.springframework:spring-core: Possible privilege escalation in org.springframework:spring-coreCVE-2018-1271Mediumorg.springframework:spring-core: Path Traversal in org.springframework:spring-coreCVE-2018-1258Highorg.springframework:spring-core: Spring Framework when used in combination with any versions of Spring Security contains an authorization bypassCVE-2018-1257Mediumorg.springframework:spring-core: Denial of Service in org.springframework:spring-coreCVE-2018-1199Mediumorg.springframework:spring-core: Improper Input Validation in org.springframework.security:spring-security-core, org.springframework.security:spring-security-core , and…CVE-2018-11040Mediumorg.springframework:spring-core: Moderate severity vulnerability that affects org.springframework:spring-core

Stop the waste.
Protect your environment with Kodem.