Privilege Escalation in VMware spring-security
Privilege Escalation in VMware spring-security
Threat Level
Vulnerability Report
For a detailed threat advisory, download the pdf file here
Summary
A vulnerability in VMware’s Spring Security affects the mapping of permitted scope in spring-security-oauth2-client, allowing privilege escalation.