Privilege Escalation in VMware spring-security

Threat Advisories

Privilege Escalation in VMware spring-security

November 2, 2022
Threat Level
Amber
Vulnerability Report

For a detailed threat advisory, download the pdf file here

Summary

A vulnerability in VMware’s Spring Security affects the mapping of permitted scope in spring-security-oauth2-client, allowing privilege escalation.

Recent Posts

Join Our Newsletter 14,000+ subscribers and growing! Get top cybersecurity news delivered directly to your inbox.
Sign Up to Receive Our Weekly Threat Digest