cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-22271,https://securityvulnerability.io/vulnerability/CVE-2024-22271,Spring Cloud Function Web DOS Vulnerability,"The Spring Cloud Function Framework is susceptible to a Denial of Service (DoS) attack when users attempt to compose functions that do not exist. This vulnerability is present in versions 4.1.x prior to 4.1.2 and 4.0.x prior to 4.0.8, specifically when the Spring Cloud Function Web module is employed. Exploiting this vulnerability could hinder the application's functionality and accessibility, as it can cause significant interruptions when improper function compositions occur.",Spring By Vmware Tanzu,Spring Cloud Function Framework,8.2,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-09T13:15:00.000Z,0
CVE-2022-22979,https://securityvulnerability.io/vulnerability/CVE-2022-22979,,"In Spring Cloud Function versions prior to 3.2.6, it is possible for a user who directly interacts with framework provided lookup functionality to cause a denial-of-service condition due to the caching issue in the Function Catalog component of the framework.",Vmware,Spring Cloud Function,7.5,HIGH,0.0008900000248104334,false,false,false,false,,false,false,2022-06-21T14:23:38.000Z,0
CVE-2022-22963,https://securityvulnerability.io/vulnerability/CVE-2022-22963,,"In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.",Vmware,Spring Cloud Function,9.8,CRITICAL,0.975059986114502,true,false,false,true,true,false,false,2022-04-01T23:15:00.000Z,0