- CVE-2021-22096 for the Spring Framework
- CVE-2021-22047 for Spring Data REST
- CVE-2021-22097 for Spring AMQP
In addition, Spring Cloud OpenFeign has released versions 3.0.5 and 2.2.10, based on the same Spring Boot versions, and containing a fix for the following security vulnerability:
- CVE-2021-22044 for Spring Cloud OpenFeign
Please, review the reports and upgrade!