| Bug | jessie | Description |
|---|
| CVE-2024-22257 | vulnerable | In Spring Security, versions 5.7.x prior to 5.7.12, 5.8.x prior to 5. ... |
| CVE-2024-22234 | vulnerable | In Spring Security, versions 6.1.x prior to 6.1.7 and versions 6.2.x p ... |
| CVE-2023-34035 | vulnerable | Spring Security versions 5.8prior to 5.8.5, 6.0prior to 6.0.5,and 6.1p ... |
| CVE-2023-34034 | vulnerable | Using "**" as a pattern in Spring Security configuration for WebFlux ... |
| CVE-2022-31692 | vulnerable | Spring Security, versions 5.7 prior to 5.7.5 and 5.6 prior to 5.6.9 co ... |
| CVE-2022-31690 | vulnerable | Spring Security, versions 5.7 prior to 5.7.5, and 5.6 prior to 5.6.9, ... |
| CVE-2022-22978 | vulnerable | In spring security versions prior to 5.4.11+, 5.5.7+ , 5.6.4+ and olde ... |
| CVE-2022-22976 | vulnerable | Spring Security versions 5.5.x prior to 5.5.7, 5.6.x prior to 5.6.4, a ... |
| CVE-2021-22119 | vulnerable | Spring Security versions 5.5.x prior to 5.5.1, 5.4.x prior to 5.4.7, 5 ... |
| CVE-2018-15801 | vulnerable (no DSA) | Spring Security versions 5.1.x prior to 5.1.2 contain an authorization ... |
| CVE-2018-1199 | vulnerable | Spring Security (Spring Security 4.1.x before 4.1.5, 4.2.x before 4.2. ... |
| Bug | Description |
|---|
| CVE-2020-5408 | Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5 ... |
| CVE-2020-5407 | Spring Security versions 5.2.x prior to 5.2.4 and 5.3.x prior to 5.3.2 ... |
| CVE-2019-11272 | Spring Security, versions 4.2.x up to 4.2.12, and older unsupported ve ... |
| CVE-2019-3795 | Spring Security versions 4.2.x prior to 4.2.12, 5.0.x prior to 5.0.12, ... |
| CVE-2018-1258 | Spring Framework version 5.0.5 when used in combination with any versi ... |
| CVE-2011-2894 | Spring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through 3. ... |
| CVE-2011-2732 | CRLF injection vulnerability in the logout functionality in VMware Spr ... |
| CVE-2011-2731 | Race condition in the RunAsManager mechanism in VMware SpringSource Sp ... |