Vulnerability Bulletins

K000134500 : Spring Framework vulnerability CVE-2023-20860


System information

   
Affected software F-Secure

Description

Security Advisory Description Spring Framework running version 6.0.0 - 6.0.6 or 5.3.0 - 5.3.25 using "**" as a pattern in Spring Security configuration with the mvcRequestMatcher creates a ...

More info:

https://my.f5.com/manage/s/article/K000134500?utm_source=f5support&utm_medium=RSS

Standar resources

Property Value
CVE

Version history

Version Comments Date
1.0 Advisory issued 2023-05-09
Ministerio de Defensa
CNI
CCN
CCN-CERT