New: Corgea AI Pentesting — autonomous penetration testing in hours, not weeks
MEDIUM 6.5 Maven

Spring Security Missing Authorization vulnerability

GHSA-hmqf-wpq9-jq83 · CVE-2024-38810

Published · Modified

Description

Missing Authorization When Using @AuthorizeReturnObject in Spring Security 6.3.0 and 6.3.1 allows attacker to render security annotations inaffective.

Ready to move

Start Securing

Free, no credit card | First findings in minutes