Retail Customer Engagement
1 CVEs
product
Monthly
In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable.
Java
Authentication Bypass
Spring Framework
Commerce Guided Search
Communications Brm
+35
NVD
CVSS 3.1
6.5
EPSS
10.7%
CVE-2020-5421
Maven
EPSS 11%
CVSS 6.5
MEDIUM
PATCH
This Month
In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable.
Java
Authentication Bypass
Spring Framework
+37
NVD