The host is installed with SpringSource Spring Framework before 5.2.20, or 5.3.0 before 5.3.17 and is prone to an allocation of resources without limits vulnerability. A flaw is present in the application, which fails to properly handle issues in specially crafted SpEL expression. Successful exploitation could allows an unauthenticated attacker to cause denial of service.