MEDIUM | OCTOBER 18, 2023 | CVE-2023-34050
Description In 2016, allowed list patterns for deserializable class names were added to Spring AMQP, allowing users to lock down deserialization of data in messages from untrusted sources; however by default, when no allowed list was provided, all classes…
LOW | SEPTEMBER 19, 2023 | CVE-2023-34047
Description A batch loader function in Spring for GraphQL versions 1.1.0 - 1.1.5 and 1.2.0 - 1.2.2 may be exposed to GraphQL context with values, including security context values, from a different session. An application is vulnerable if it provides a…
LOW | SEPTEMBER 18, 2023 | CVE-2023-34042
Description The spring-security.xsd file inside the spring-security-config jar is world writable which means that if it were extracted it could be written by anyone with access to the file system. While there are no known exploits, this is an example of “CWE…
MEDIUM | AUGUST 23, 2023 | CVE-2023-34040
Description By default, these properties are false, and the container only attempts to deserialize the headers if an ErrorHandlingDeserializer is configured.
The ErrorHandlingDeserializer prevents the vulnerability by removing any such malicious headers before…
HIGH | JULY 18, 2023 | CVE-2023-34034
Description Using "**" as a pattern in Spring Security configuration for WebFlux creates a mismatch in pattern matching between Spring Security and Spring WebFlux, and the potential for a security bypass. Affected Spring Products and Versions Spring Security…
HIGH | JULY 17, 2023 | CVE-2023-34035
Description Severity is high unless otherwise noted. Spring Security versions 5.8 prior to 5.8.5, 6.0 prior to 6.0.5 and 6.1 prior to 6.1.2 could be susceptible to authorization rule misconfiguration if the application uses requestMatchers(String) or…
MEDIUM | JULY 14, 2023 | CVE-2023-34036
Description Reactive web applications that use Spring HATEOAS to produce hypermedia-based responses might be exposed to malicious forwarded headers if they are not behind a trusted proxy that ensures correctness of such headers, or if they don't have anything…
HIGH | MAY 19, 2023 | CVE-2023-20883
Description In Spring Boot versions 3.0.0 - 3.0.6, 2.7.0 - 2.7.11, 2.6.0 - 2.6.14, 2.5.0 - 2.5.14 and older unsupported versions, there is potential for a denial-of-service (DoS) attack if Spring MVC is used together with a reverse proxy cache. Specifically…
HIGH | APRIL 20, 2023 | CVE-2023-20873
Description In Spring Boot versions 3.0.0 - 3.0.5, 2.7.0 - 2.7.10, 2.6.0 - 2.6.14, 2.5.0 - 2.5.14 and older unsupported versions, an application that is deployed to Cloud Foundry could be susceptible to a security bypass. Specifically, an application is…
HIGH | APRIL 17, 2023 | CVE-2023-20862
Description In Spring Security, versions 5.7.x prior to 5.7.8, versions 5.8.x prior to 5.8.3, and versions 6.0.x prior to 6.0.3, the logout support does not properly clean the security context if using serialized versions. Additionally, it is not possible to…
