Lucene search

Spring for GraphQL may be exposed to GraphQL context with values from a different session

🗓️ 20 Sep 2023 12:22:30Reported by GoogleType

osv🔗 osv.dev👁 16 Views

Spring GraphQL vulnerability exposed to different session

Reporter	Title	Published	Views	Family All 8
OSV	CVE-2023-34047	20 Sep 202310:15	–	osv
Veracode	Information Disclosure	25 Sep 202308:52	–	veracode
Prion	Code injection	20 Sep 202310:15	–	prion
Cvelist	CVE-2023-34047 Exposure of data and identity to wrong session in Spring for GraphQL	20 Sep 202309:09	–	cvelist
CVE	CVE-2023-34047	20 Sep 202310:15	–	cve
NVD	CVE-2023-34047	20 Sep 202310:15	–	nvd
Vulnrichment	CVE-2023-34047 Exposure of data and identity to wrong session in Spring for GraphQL	20 Sep 202309:09	–	vulnrichment
Github Security Blog	Spring for GraphQL may be exposed to GraphQL context with values from a different session	20 Sep 202312:30	–	github

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-34047
github	www.github.com/spring-projects/spring-graphql
spring	www.spring.io/security/cve-2023-34047

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Sep 2023 12:30Current

6.8Medium risk

Vulners AI Score6.8

CVSS33.1 - 4.3

EPSS0.00462

SSVC