VYPR

Data Flow

by Spring Cloud

Source repositories

CVEs (2)

  • CVE-2024-22263HigJun 19, 2024
    risk 0.59cvss 8.8epss 0.18

    Spring Cloud Data Flow is a microservices-based Streaming and Batch data processing in Cloud Foundry and Kubernetes. The Skipper server has the ability to receive upload package requests. However, due to improper sanitization for upload path, a malicious user who has access to…

  • CVE-2020-5427HigJan 27, 2021
    risk 0.47cvss 7.2epss 0.01

    In Spring Cloud Data Flow, versions 2.6.x prior to 2.6.5, versions 2.5.x prior 2.5.4, an application is vulnerable to SQL injection when requesting task execution.