NVD Vulnerability Detail

Search Exploit, PoC

GitHub

Exploit DB

Packet Storm

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-22257

Summary	In Spring Security, versions 5.7.x prior to 5.7.12, 5.8.x prior to 5.8.11, versions 6.0.x prior to 6.0.9, versions 6.1.x prior to 6.1.8, versions 6.2.x prior to 6.2.3, an application is possible vulnerable to broken access control when it directly uses the AuthenticatedVoter#vote passing a null Authentication parameter.
Publication Date	March 19, 2024, 12:15 a.m.
Registration Date	March 19, 2024, 10 a.m.
Last Update	April 19, 2024, 4:15 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://spring.io/security/cve-2024-22257
2	https://security.netapp.com/advisory/ntap-20240419-0005/

Common Vulnerabilities List