You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We have a security issue using the following Spring Data Commons dependencies:
Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property binder vulnerability caused by improper neutralization of special elements. An unauthenticated remote malicious user (or attacker) can supply specially crafted request parameters against Spring Data REST backed HTTP resources or using Spring Data's projection-based request payload binding hat can lead to a remote code execution attack.
My 2 cents, the dependencies need to be upgraded to support one of the versions not listed above.
Thank you for your hard work!
The text was updated successfully, but these errors were encountered:
Guys,
We have a security issue using the following Spring Data Commons dependencies:
My 2 cents, the dependencies need to be upgraded to support one of the versions not listed above.
Thank you for your hard work!
The text was updated successfully, but these errors were encountered: