Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-22112

Опубликовано: 23 фев. 2021
Источник: nvd
CVSS3: 8.8
CVSS2: 9
EPSS Низкий

Описание

Spring Security 5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE, 5.2.x prior to 5.2.9.RELEASE, and older unsupported versions can fail to save the SecurityContext if it is changed more than once in a single request.A malicious user cannot cause the bug to happen (it must be programmed in). However, if the application's intent is to only allow the user to run with elevated privileges in a small portion of the application, the bug can be leveraged to extend those privileges to the rest of the application.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:pivotal_software:spring_security:*:*:*:*:*:*:*:*
Версия до 5.2.9 (исключая)
cpe:2.3:a:pivotal_software:spring_security:*:*:*:*:*:*:*:*
Версия от 5.3.0 (включая) до 5.3.8 (исключая)
cpe:2.3:a:vmware:spring_security:*:*:*:*:*:*:*:*
Версия от 5.4.0 (включая) до 5.4.4 (исключая)
Конфигурация 2

Одно из

cpe:2.3:a:oracle:communications_element_manager:*:*:*:*:*:*:*:*
Версия от 8.2.0 (включая) до 8.2.4.0 (включая)
cpe:2.3:a:oracle:communications_interactive_session_recorder:6.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_interactive_session_recorder:6.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_unified_inventory_management:7.4.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hospitality_cruise_shipboard_property_management_system:20.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration:11.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:insurance_policy_administration:11.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*
Версия до 8.0.25 (включая)

EPSS

Процентиль: 76%
0.00979
Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

redhat логотип

CVE-2021-22112

CVSS3: 8.8
redhat
почти 5 лет назад

Spring Security 5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE, 5.2.x prior to 5.2.9.RELEASE, and older unsupported versions can fail to save the SecurityContext if it is changed more than once in a single request.A malicious user cannot cause the bug to happen (it must be programmed in). However, if the application's intent is to only allow the user to run with elevated privileges in a small portion of the application, the bug can be leveraged to extend those privileges to the rest of the application.

debian логотип

CVE-2021-22112

CVSS3: 8.8
debian
почти 5 лет назад

Spring Security 5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE, 5. ...

github логотип

GHSA-gq28-h5vg-8prx

CVSS3: 8.8
github
больше 4 лет назад

Privilege escalation in spring security

EPSS

Процентиль: 76%
0.00979
Низкий

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

NVD-CWE-noinfo