0.975 High
EPSS
Percentile
100.0%
A flaw was found in Spring Cloud Function via the spring.cloud.function.routing-expression header that is modified by the attacker to contain malicious expression language code. The attacker is able to call functions that should not normally be accessible, including runtime exec calls.
Affected customers should update immediately as soon as patched software is available. There are no other mitigations available at this time.
0.975 High
EPSS
Percentile
100.0%