Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Privilege Escalation

🗓️ 06 Apr 2021 03:21:24Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode🔗 sca.analysiscenter.veracode.com👁 26 Views

Privilege Escalation in spring-security-web

Related
Detection
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: IBM Automation Decision Services - Multiple CVEs addressed (February 2024)
15 Apr 202502:23
ibm
IBM Security Bulletins		Security Bulletin: IBM Cognos Controller has addressed multiple vulnerabilities
2 Dec 202219:43
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in Spring WebFlux, Jenkins, Spring Securiy, Spring Framework, and Node.js lodash might affect IBM Storage Defender Copy Data Management.
5 May 202618:22
ibm
FreeBSD		jenkins -- Privilege escalation vulnerability in bundled Spring Security library
19 Feb 202100:00
freebsd
Circl		CVE-2021-22112
23 Feb 202122:35
circl
CNNVD		Vmware VMware Spring Security Permission License and Access Control Issues Vulnerability
19 Feb 202100:00
cnnvd
CVE		CVE-2021-22112
23 Feb 202118:48
cve
Cvelist		CVE-2021-22112
23 Feb 202118:48
cvelist
EUVD		EUVD-2021-1083
7 Oct 202500:30
euvd
Tenable Nessus		FreeBSD : jenkins -- Privilege escalation vulnerability in bundled Spring Security library (a45d945a-cc2c-4cd7-a941-fb58fdb1b01e)
22 Feb 202100:00
nessus
Rows per page
Vulners
Node
springframeworkspring-security-webRange5.4.0-M15.4.3java
OR
springframeworkspring-security-webRange5.3.0.M15.3.7.RELEASEjava
OR
springframeworkspring-security-webRange5.2.0.M15.2.8.RELEASEjava
OR
springframeworkspring-security-webRange5.0.0.M15.1.13.RELEASEjava
OR
springframeworkspring-security-webRange3.1.0.M13.2.10.RELEASEjava
OR
springframeworkspring-security-webRange4.0.0.M14.2.20.RELEASEjava
SourceLink
githubwww.github.com/spring-projects/spring-security/compare/f60daa51529c8330219528ec2ea99446da0bbc78...e2121532a2f86a379c3cd6f6e4bf7bd014311a9d
githubwww.github.com/spring-projects/spring-security/compare/996ccc08a47a1bba30e7595fe27ca6dcfc1ea5b5...419839d05c2cf42e13890818c57a729c53724f47
githubwww.github.com/spring-projects/spring-security/commit/c72a6fac04853912a4b7caad5f0500f2aace5a79
tanzuwww.tanzu.vmware.com/security/cve-2021-22112
oraclewww.oracle.com/security-alerts/cpuApr2021.html
oraclewww.oracle.com/security-alerts/cpuoct2021.html
oraclewww.oracle.com//security-alerts/cpujul2021.html
listswww.lists.apache.org/thread.html/redbd004a503b3520ae5746c2ab5e93fd7da807a8c128e60d2002cd9b@%3Cissues.nifi.apache.org%3E
listswww.lists.apache.org/thread.html/redbd004a503b3520ae5746c2ab5e93fd7da807a8c128e60d2002cd9b%40%3Cissues.nifi.apache.org%3E
openwallwww.openwall.com/lists/oss-security/2021/02/19/7
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
07 Nov 2023 23:03Current
3.3Low risk
Vulners AI Score3.3
CVSS 29
CVSS 3.18.8
EPSS0.00979
vulnerabilitysecuritycontextelevated privilegesapplication
26