{ "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2014-3625", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Directory traversal vulnerability in Pivotal Spring Framework 3.0.4 through 3.2.x before 3.2.12, 4.0.x before 4.0.8, and 4.1.x before 4.1.2 allows remote attackers to read arbitrary files via unspecified vectors, related to static resource handling." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "RHSA-2015:0720", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0720.html" }, { "name": "http://www.pivotal.io/security/cve-2014-3625", "refsource": "CONFIRM", "url": "http://www.pivotal.io/security/cve-2014-3625" }, { "name": "https://jira.spring.io/browse/SPR-12354", "refsource": "CONFIRM", "url": "https://jira.spring.io/browse/SPR-12354" }, { "name": "RHSA-2015:0236", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0236.html" }, { "refsource": "MLIST", "name": "[debian-lts-announce] 20190713 [SECURITY] [DLA 1853-1] libspring-java security update", "url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00012.html" } ] } }