16Mar
CVE-2024-22259 | Spring Framework up to 5.3.32/6.0.17/6.1.4 UriComponentsBuilder server-side request forgery
A vulnerability, which was classified as critical, has been found in Spring Framework up to 5.3.32/6.0.17/6.1.4. This issue affects some unknown processing of the component UriComponentsBuilder. The manipulation leads to server-side request forgery. The identification of this vulnerability is CVE-2024-22259. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.