Is Spring Framework 5.3.39 patched?
VMware · cycle 5.3 · end of life · Official site ↗
28/100End of life
Minimum safe version6.0.18
5.3.39 has 4 open critical-or-high vulnerabilities. Run 6.0.18 or later to clear them. See what 6.0.18 fixes →
Known issues affecting 5.3.39
Exploited first, then by exploitation probability.
CVE-2016-1000027 CRITICAL EPSS 60% → fixed in 6.0.0 CVE-2024-38820 LOW EPSS 1% → fixed in 6.1.14 CVE-2026-22737 MEDIUM EPSS 0% → fixed in 7.0.6 CVE-2026-22735 LOW EPSS 0% → fixed in 7.0.6 CVE-2026-22741 LOW EPSS 0% → fixed in 7.0.7 CVE-2026-22745 MEDIUM EPSS 0% → fixed in 7.0.7 CVE-2026-22740 MEDIUM EPSS 0% → fixed in 7.0.7 CVE-2026-41843 MEDIUM EPSS 0% → fixed in 7.0.8 CVE-2026-41840 MEDIUM EPSS 0% → fixed in 7.0.8 CVE-2026-41842 HIGH EPSS 0% → fixed in 7.0.8 CVE-2026-41849 HIGH EPSS 0% → fixed in 5.3.49 CVE-2026-41841 MEDIUM EPSS 0% → fixed in 7.0.8 CVE-2026-41850 HIGH EPSS 0% → fixed in 7.0.8 CVE-2026-41851 MEDIUM EPSS 0% → fixed in 7.0.8