org.springframework.security:spring-security-config@6.3.1 vulnerabilities
-
latest version
6.4.1
-
latest non vulnerable version
-
first published
15 years ago
-
latest version published
7 days ago
-
licenses detected
- [3.0.0.RELEASE,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.springframework.security:spring-security-config package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.springframework.security:spring-security-config is a security configuration package for Spring Framework. Affected versions of this package are vulnerable to Authorization Bypass due to the use of How to fix Authorization Bypass? Upgrade |
[,5.7.14)
[5.8.0,5.8.16)
[6.2.0,6.2.8)
[6.3.0,6.3.5)
|
org.springframework.security:spring-security-config is a security configuration package for Spring Framework. Affected versions of this package are vulnerable to Missing Authorization. When the applications using NOTE: This does not impact any For this to impact an application, all of the following need to be true:
How to fix Missing Authorization? Upgrade |
[6.3.0,6.3.2)
|