CVE-2018-1258

Priority
Description
Spring Framework version 5.0.5 when used in combination with any versions
of Spring Security contains an authorization bypass when using method
security. An unauthorized malicious user can gain unauthorized access to
methods that should be restricted.
Notes
Package
Upstream:needs-triage
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was needs-triage)
Ubuntu 16.06 ESM (Xenial Xerus):DNE
Patches:
More Information

Updated: 2022-01-05 06:15:51 UTC (commit bee81f3943285a7a996df29b4e63021c07275e35)