Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2019-3778

CWE-601Open Redirect7 documents7 sources
Severity
6.5MEDIUM
EPSS
19.0%
top 4.67%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
3
Spring Spring Security OauthPivotal Software Spring Security OauthOracle Banking Corporate Lending
Timeline
PublishedMar 7
Latest updateJun 17

Description

Spring Security OAuth, versions 2.3 prior to 2.3.5, and 2.2 prior to 2.2.4, and 2.1 prior to 2.1.4, and 2.0 prior to 2.0.17, and older unsupported versions could be susceptible to an open redirector attack that can leak an authorization code. A malicious user or attacker can craft a request to the authorization endpoint using the authorization code grant type, and specify a manipulated redirection URI via the "redirect_uri" parameter. This can cause the authorization server to redirect the resou

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NExploitability: 3.9 | Impact: 2.5

Affected Packages5 packages

CVEListV5spring/spring_security_oauth2.32.3.5.RELEASE+3
Mavenorg.springframework.security.oauth:spring-security-oauth2.1.0.RELEASE2.1.4.RELEASE+3
Mavenorg.springframework.security.oauth:spring-security-oauth22.1.0.RELEASE2.1.4.RELEASE+3
NVDoracle/banking_corporate_lending14.1.0, 14.3.0, 14.4.0+2

🔴Vulnerability Details

3
GHSA
spring-security-oauth and spring-security-oauth2 Open Redirect vulnerability2019-03-14
OSV
spring-security-oauth and spring-security-oauth2 Open Redirect vulnerability2019-03-14
CVEList
Open Redirect in spring-security-oauth22019-03-07

💥Exploits & PoCs

1
Exploit-DB
Spring Security OAuth - Open Redirector2019-06-17

📋Vendor Advisories

1
Red Hat
spring-security-oauth2: Open redirect via the "redirect_uri" parameter2019-02-21

💬Community

1
Bugzilla
CVE-2019-3778 spring-security-oauth2: Open redirect via the "redirect_uri" parameter2019-04-04