7.1 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.0%
Directory traversal vulnerability in Pivotal Spring Framework 3.0.4 through 3.2.x before 3.2.12, 4.0.x before 4.0.8, and 4.1.x before 4.1.2 allows remote attackers to read arbitrary files via unspecified vectors, related to static resource handling.
rhn.redhat.com/errata/RHSA-2015-0236.html
rhn.redhat.com/errata/RHSA-2015-0720.html
www.pivotal.io/security/cve-2014-3625
jira.spring.io/browse/SPR-12354
lists.debian.org/debian-lts-announce/2019/07/msg00012.html