Security Advisory

CVE-2022-22970

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-12 19:28:47

Last updated 2024-08-03 03:28:42

Assigner vmware

State PUBLISHED

Description

In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, applications that handle file uploads are vulnerable to DoS attack if they rely on data binding to set a MultipartFile or javax.servlet.Part to a field in a model object.

← Browse all CVEs View on cve.org ↗