CVE-2021-22112

CWE-281CWE-269Improper Privilege Management9 documents7 sources
Severity
8.8HIGH
EPSS
1.0%
top 23.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Pivotal Software Spring SecurityVmware Spring SecurityOracle Communications Element Manager+5 more
Timeline
PublishedFeb 23
Latest updateOct 15

Description

Spring Security 5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE, 5.2.x prior to 5.2.9.RELEASE, and older unsupported versions can fail to save the SecurityContext if it is changed more than once in a single request.A malicious user cannot cause the bug to happen (it must be programmed in). However, if the application's intent is to only allow the user to run with elevated privileges in a small portion of the application, the bug can be leveraged to extend those privileges to the rest of the a

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages11 packages

NVDvmware/spring_security5.4.05.4.4
NVDpivotal_software/spring_security5.3.05.3.8+1
CVEListV5spring_security5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE, 5.2.x prior to 5.2.9.RELEASE

Patches

Patch: www.oracle.comPatch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

3
OSV
Privilege escalation in spring security2021-05-10
GHSA
Privilege escalation in spring security2021-05-10
CVEList
CVE-2021-22112: Spring Security 52021-02-23

📋Vendor Advisories

5
Oracle
Oracle Oracle Communications Risk Matrix: Work Orders (Spring Security) — CVE-2021-221122021-10-15
Oracle
Oracle Oracle Communications Applications Risk Matrix: REST API (Spring Security) — CVE-2021-221122021-07-15
Oracle
Oracle Oracle Communications Risk Matrix: Provision API (Spring Security) — CVE-2021-221122021-04-15
Jenkins
Jenkins Security Advisory 2021-02-192021-02-19
Red Hat
jenkins: Privilege escalation vulnerability in bundled Spring Security library2021-02-19