CVE-2024-38809 | Vmware Spring Framework up to 5.3.37/6.0.22/6.1.11 Conditional HTTP Request ETags denial of service
A vulnerability classified as critical has been found in Vmware Spring Framework up to 5.3.37/6.0.22/6.1.11. Affected is an unknown function of the component Conditional HTTP Request Handler. The manipulation of the argument ETags leads to denial of service.
This vulnerability is traded as CVE-2024-38809. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.