CVE-2020-5407

CWE-3474 documents4 sources

Severity

8.8HIGH

EPSS

0.7%

top 28.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Spring BY Vmware Spring Security Pivotal Software Spring Security

Timeline

PublishedMay 13

Latest updateJun 5

Description

Spring Security versions 5.2.x prior to 5.2.4 and 5.3.x prior to 5.3.2 contain a signature wrapping vulnerability during SAML response validation. When using the spring-security-saml2-service-provider component, a malicious user can carefully modify an otherwise valid SAML response and append an arbitrary assertion that Spring Security will accept as valid.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages3 packages

▶CVEListV5spring_by_vmware/spring_security5.2 — 5.2.4+1

▶NVDpivotal_software/spring_security5.2.0 — 5.2.4+1

▶Mavenorg.springframework.security:spring-security-core5.2.0 — 5.2.4+1

🔴Vulnerability Details

GHSA

Signature wrapping vulnerability in Spring Security↗2020-06-05

▶

OSV

Signature wrapping vulnerability in Spring Security↗2020-06-05

▶

CVEList

Signature Wrapping Vulnerability with spring-security-saml2-service-provider↗2020-05-13

▶