Build the apps that make the world run. Join us at SpringOne in San Francisco, Dec 6–8. >

Spring Data REST Vulnerability (CVE-2022-31679)

- [09-19] Vulnerability announced here and Spring Data REST 3.6.7 and 3.7.3 released
- [09-19] Blog post updated to refer to the CVE report published

The Spring Data 2021.1.7 and 2021.2.3 releases shipped on September 19th contained releases for Spring Data REST 3.6.7 and 3.7.3 which include fixes for CVE-2022-31679. Users are encouraged to update as soon as possible.

comments powered by Disqus