Lucene search

[email protected]CVE-2021-22112

HistoryFeb 23, 2021 - 7:15 p.m.

CVE-2021-22112

2021-02-2319:15:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

113

cve-2021-22112

spring security

securitycontext

cve

nvd

vulnerability

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

65.5%

JSON

Spring Security 5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE, 5.2.x prior to 5.2.9.RELEASE, and older unsupported versions can fail to save the SecurityContext if it is changed more than once in a single request.A malicious user cannot cause the bug to happen (it must be programmed in). However, if the application’s intent is to only allow the user to run with elevated privileges in a small portion of the application, the bug can be leveraged to extend those privileges to the rest of the application.

CPENameOperatorVersion
vmware:spring_securityvmware spring securitylt5.4.4
pivotal_software:spring_securitypivotal software spring securitylt5.3.8
pivotal_software:spring_securitypivotal software spring securitylt5.2.9
oracle:hospitality_cruise_shipboard_property_management_systemoracle hospitality cruise shipboard property management systemeq20.1.0
oracle:communications_interactive_session_recorderoracle communications interactive session recordereq6.3
oracle:communications_interactive_session_recorderoracle communications interactive session recordereq6.4
oracle:communications_unified_inventory_managementoracle communications unified inventory managementeq7.4.1
oracle:insurance_policy_administrationoracle insurance policy administrationeq11.3.0
oracle:insurance_policy_administrationoracle insurance policy administrationeq11.2.0
oracle:communications_element_manageroracle communications element managerle8.2.4.0

CPE	Name	Operator	Version
vmware:spring_security	vmware spring security	lt	5.4.4
pivotal_software:spring_security	pivotal software spring security	lt	5.3.8
pivotal_software:spring_security	pivotal software spring security	lt	5.2.9
oracle:hospitality_cruise_shipboard_property_management_system	oracle hospitality cruise shipboard property management system	eq	20.1.0
oracle:communications_interactive_session_recorder	oracle communications interactive session recorder	eq	6.3
oracle:communications_interactive_session_recorder	oracle communications interactive session recorder	eq	6.4
oracle:communications_unified_inventory_management	oracle communications unified inventory management	eq	7.4.1
oracle:insurance_policy_administration	oracle insurance policy administration	eq	11.3.0
oracle:insurance_policy_administration	oracle insurance policy administration	eq	11.2.0
oracle:communications_element_manager	oracle communications element manager	le	8.2.4.0