Spring Framework 5.0.x < 5.0.16 / 5.1.x < 5.1.13 / 5.2.x < 5.2.3 Spring Framework Reflected File Download Vulnerability. (CVE-2020-5398)

high Nessus Plugin ID 133148

Version 1.8

Oct 7, 2024, 1:27 PM

  • Plugin categorization (adding new 'component' to component plugins)

Plugin Feed: 202410071327

Version 1.7

Mar 29, 2024, 4:15 PM

  • Exploit attributes ("Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available")
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")

Plugin Feed: 202403291615

Version 1.6

Dec 6, 2022, 2:54 AM

  • Reference

Plugin Feed: 202212060254

Version 1.6

Mar 29, 2024, 1:58 PM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True")
  • Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")

Plugin Feed: 202403291358

* Changelogs are generally available for changes made after Nov 1, 2022