Spring Batch versions 3.0.9, 4.0.1, 4.1.0, and older unsupported versions, were susceptible to XML External Entity Injection (XXE) when receiving XML data from untrusted sources.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pivotal software spring batch |
||
pivotal software spring batch 4.1.0 |