Every CVE whose affected-product data names Pivotal Spring-flex, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2017-3203 — CVSS 8.1 (high): The Java implementations of AMF3 deserializers in Pivotal/Spring Spring-flex derive class instances from java.io.Externalizable rather than…