cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-22095,https://securityvulnerability.io/vulnerability/CVE-2021-22095,Out-of-Memory Error in Spring AMQP Versions from VMware,"A vulnerability in Spring AMQP allows for the possibility of an Out-of-Memory (OOM) error when processing messages. This occurs in versions 2.2.0 through 2.2.19 and 2.3.0 through 2.3.11, where the 'toString()' method of the Spring AMQP Message object creates a new String object from the message body, without considering the size of the message. If a large message is processed, it can lead to excessive memory allocation and ultimately an OOM error, which may disrupt application performance and availability.",Vmware,Spring AMQp,6.5,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2021-11-30T18:41:35.000Z,0
CVE-2021-22097,https://securityvulnerability.io/vulnerability/CVE-2021-22097,Deserialization Vulnerability in Spring AMQP Products by VMware,"In specific versions of Spring AMQP, a deserialization vulnerability exists within the toString() method of the Spring AMQP Message object. This vulnerability allows for the construction of a malicious java.util.Dictionary object. If triggered, it can lead to substantial resource consumption, specifically resulting in 100% CPU usage when the toString() method is invoked. This poses significant performance and stability risks to applications relying on affected versions.",Vmware,Spring AMQp,6.5,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2021-10-28T15:24:19.000Z,0