org.springframework.security.oauth:spring-security-oauth2 vulnerabilities

Module for providing OAuth2 support to Spring Security

Latest version: 2.3.6.RELEASE

Licenses detected

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the org.springframework.security.oauth:spring-security-oauth2 package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • M
Open Redirect
[2.3.0,2.3.6.RELEASE),[2.2.0,2.2.5.RELEASE),[2.1.0,2.1.5.RELEASE),[2.0.0, 2.0.18.RELEASE) Not available 30 May, 2019
  • H
Credentials Disclosure
[2.3.0,2.3.5),[2.2.0,2.2.4),[2.1.0,2.1.4),[2.0.0,2.0.17) Not available 08 Mar, 2019
  • H
Privilege Escalation
[2.0.0, 2.0.16),[2.1.0, 2.1.3),[2.2.0, 2.2.3),[2.3.0, 2.3.4) Not available 17 Oct, 2018
  • H
Arbitrary Code Execution
[,2.0.15),[2.1, 2.1.2),[2.2, 2.2.2),[2.3, 2.3.3) Not available 10 May, 2018
  • H
Arbitrary Code Execution
[1.0.0.RELEASE,1.0.5.RELEASE],[2.0.0.RELEASE,2.0.10.RELEASE) Not available 04 Jul, 2016