VIR Vulnerability Intelligence Relay

Package impact

java Maven / org.springframework.security:spring-security-core

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2014-3527 critical 9.8 9.8 9y ago Authorization Bypass in Spring Security javavmware
CVE-2011-2894 medium 6.8 15y ago Spring Framework and Spring Security vulnerable to Deserialization of Untrusted Data javavmware
CVE-2011-2731 medium 5.1 14y ago Concurrent Execution using Shared Resource with Improper Synchronization in Spring Security javavmware
CVE-2012-5055 medium 5.0 14y ago Exposure of Sensitive Information to an Unauthorized Actor in Spring Security javavmware
CVE-2010-3700 medium 5.0 16y ago Authentication Bypass Using an Alternate Path or Channel in SpringSource Spring Security and Acegi Security javavmwareibm
CVE-2026-22751 medium 4.8 4.8 1mo ago Spring Security Core has a TOCTOU race condition when One-Time Token login with JdbcOneTimeTokenService is configured javavmware
CVE-2011-2732 medium 4.3 14y ago Improper Control of Generation of Code in Spring Security javavmware
CVE-2026-22746 low 2.5 1mo ago Spring Security Vulnerable to User Attribute Enumeration when Using DaoAuthenticationProvider java