FAIL › dossier
Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.
| Date | Event | Sev | Flags | Shame | Summary |
|---|---|---|---|---|---|
| 2022-03-25 | CVE-2018-1273 | critical | ⚡RCE ⌖KEV | 95 | Spring Data Commons contains a property binder vulnerability which can allow an attacker to perform remote code execution. |
| 2022-08-25 | CVE-2022-22963 | high | ⚡RCE ⌖KEV | 65 | When using routing functionality in VMware Tanzu's Spring Cloud Function, it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources. |
| 2022-03-25 | CVE-2020-5410 | high | ⌖KEV | 50 | Spring, by VMware Tanzu, Cloud Config contains a path traversal vulnerability that allows applications to serve arbitrary configuration files. |