Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware spring security 3.2.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2014-0097
The ActiveDirectoryLdapAuthenticator in Spring Security 3.2.0 to 3.2.1 and 3.1.0 to 3.1.5 does not check the password length. If the directory allows anonymous binds then it may incorrectly authenticate a user who supplies an empty password.
Vmware Spring Security 3.1.4
Vmware Spring Security 3.1.0
Vmware Spring Security 3.1.5
Vmware Spring Security 3.1.3
Vmware Spring Security 3.1.1
Vmware Spring Security 3.1.2
Vmware Spring Security 3.2.1
Vmware Spring Security 3.2.0
7.5
CVSSv2
CVE-2014-3527
When using the CAS Proxy ticket authentication from Spring Security 3.1 to 3.2.4 a malicious CAS Service could trick another CAS Service into authenticating a proxy ticket that was not associated. This is due to the fact that the proxy ticket authentication uses the information f...
Vmware Spring Security 3.1.4
Vmware Spring Security 3.1.0
Vmware Spring Security 3.1.3
Vmware Spring Security 3.1.1
Vmware Spring Security 3.1.2
Vmware Spring Security 3.2.1
Vmware Spring Security 3.2.3
Vmware Spring Security 3.2.0
Vmware Spring Security 3.2.4
Vmware Spring Security 3.2.2
5
CVSSv2
CVE-2016-9879
An issue exists in Pivotal Spring Security prior to 3.2.10, 4.1.x prior to 4.1.4, and 4.2.x prior to 4.2.1. Spring Security does not consider URL path parameters when processing security constraints. By adding a URL path parameter with an encoded "/" to a request, an at...
Vmware Spring Security 4.2.0
Vmware Spring Security 4.1.1
Vmware Spring Security 4.1.0
Vmware Spring Security 4.1.2
Vmware Spring Security 3.2.7
Vmware Spring Security 3.2.8
Vmware Spring Security 4.1.3
Vmware Spring Security 3.2.9
Vmware Spring Security 3.2.6
Vmware Spring Security 3.2.1
Vmware Spring Security 3.2.3
Vmware Spring Security 3.2.0
Vmware Spring Security 3.2.5
Vmware Spring Security 3.2.4
Vmware Spring Security 3.2.2
Ibm Websphere Application Server 8.5.5.6
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 8.5.5.8
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 8.5.5.5
Ibm Websphere Application Server 8.5.5.9
5
CVSSv2
CVE-2016-9878
An issue exists in Pivotal Spring Framework prior to 3.2.18, 4.2.x prior to 4.2.9, and 4.3.x prior to 4.3.5. Paths provided to the ResourceServlet were not properly sanitized and as a result exposed to directory traversal attacks.
Pivotal Software Spring Framework 4.2.0
Pivotal Software Spring Framework 4.3.0
Pivotal Software Spring Framework
Vmware Spring Framework 3.2.2
Vmware Spring Framework 3.2.1
Vmware Spring Framework 3.2.8
Vmware Spring Framework 3.2.7
Vmware Spring Framework 3.2.10
Vmware Spring Framework 3.2.9
Vmware Spring Framework 3.2.4
Vmware Spring Framework 3.2.3
Vmware Spring Framework 3.2.6
Vmware Spring Framework 3.2.5
Vmware Spring Framework 3.2.12
Vmware Spring Framework 3.2.11
Vmware Spring Framework 3.2.13
Vmware Spring Framework 3.2.15
Vmware Spring Framework 3.2.17
Vmware Spring Framework 3.2.16
Vmware Spring Framework 3.2.14
Vmware Spring Framework 4.3.3
Vmware Spring Framework 4.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started