CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-1423

Malicious code in bioql PyPI...

6.3CVSS6.3AI score0.00461EPSS

Exploits0References5

RedhatCVE•added 2023/07/31 1:49 p.m.•31 views

CVE-2023-20862

A flaw was found in Spring Security. In affected versions of Spring Security, the logout support does not properly clean the security context if using serialized versions. Additionally, it is not possible to explicitly save an empty security context to the HttpSessionSecurityContextRepository. Th...

6.3CVSS8.8AI score0.00461EPSS

Exploits0References4

IBM Security Bulletins•added 2023/07/24 8:36 p.m.•42 views

Security Bulletin: VMware Tanzu Spring Security is vulnerable to CVE-2022-31692 and CVE-2023-20862 used in IBM Maximo Application Suite - Monitor Component

Summary IBM Maximo Application Suite - Monitor Component uses VMware Tanzu Spring Security which is vulnerable to CVE-2022-31692 and CVE-2023-20862. Vulnerability Details CVEID:CVE-2022-31692 DESCRIPTION: VMware Tanzu Spring Security could allow a remote attacker to bypass security restrictions,...

9.8CVSS7.6AI score0.07387EPSS

Exploits3Affected Software1

IBM Security Bulletins•added 2023/07/20 4:52 p.m.•37 views

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in VMware Tanzu Spring Security (CVE-2023-20862)

Summary A vulnerability in VMware Tanzu Spring Security used by IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2023-20862 DESCRIPTION: VMware Tanzu Spring Security could allow a remote attacker to bypass security restrictions, caused by the logout support feature...

6.3CVSS6.5AI score0.00461EPSS

Exploits0Affected Software1

NVD•added 2023/04/19 8:15 p.m.•16 views

CVE-2023-20862

In Spring Security, versions 5.7.x prior to 5.7.8, versions 5.8.x prior to 5.8.3, and versions 6.0.x prior to 6.0.3, the logout support does not properly clean the security context if using serialized versions. Additionally, it is not possible to explicitly save an empty security context to the...

6.3CVSS6.6AI score0.00461EPSS

Exploits0References2

Prion•added 2023/04/19 8:15 p.m.•28 views

Design/Logic Flaw

6.5CVSS6.2AI score0.00461EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by