Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2026/04/22 6:30 a.m.9 views

Spring Security Doesn't Correctly Include Servlet Path in Path Matching of HttpSecurity#securityMatchers

Vulnerability in Spring Spring Security. If an application is using securityMatchersString and a PathPatternRequestMatcher.Builder bean to prepend a servlet path, matching requests to that filter chain may fail and its related security components will not be exercised as intended by the...

7.5CVSS5.2AI score0.00248EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2026/04/22 6:16 a.m.9 views

CVE-2026-22753

Vulnerability in Spring Spring Security. If an application is using securityMatchersString and a PathPatternRequestMatcher.Builder bean to prepend a servlet path, matching requests to that filter chain may fail and its related security components will not be exercised as intended by the...

7.5CVSS0.00248EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/22 5:20 a.m.34 views

CVE-2026-22753 Servlet Path Not Correctly Included in Path Matching of HttpSecurity#securityMatchers

Vulnerability in Spring Spring Security. If an application is using securityMatchersString and a PathPatternRequestMatcher.Builder bean to prepend a servlet path, matching requests to that filter chain may fail and its related security components will not be exercised as intended by the...

7.5CVSS0.00248EPSS
Exploits0References1
Spring Security Advisories
Spring Security Advisories
added 2026/04/20 12:0 a.m.8 views

Servlet Path Not Correctly Included in Path Matching of HttpSecurity#securityMatchers

If an application is using securityMatchersString and a PathPatternRequestMatcher.Builder bean to prepend a servlet path, matching requests to that filter chain may fail and its related security components will not be exercised as intended by the application. This can lead to the authentication,...

7.5CVSS5.9AI score0.00248EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder