Strix
26.1K

CVE-2022-31690

HIGHCVSS 8.1/10EPSS 1.01%

Last modified

CVE-2022-31690 is a high-severity vulnerability rated 8.1/10 on the CVSS scale. Spring Security, versions 5.7 prior to 5.7.5, and 5.6 prior to 5.6.9, and older unsupported versions could be susceptible to a privilege escalation under certain conditions. A malicious user or attacker can modify a request initiated by the Client (via the browser) to the Authorization Server which can lead to a privilege escalation on the subsequent approval. EPSS estimates a 1.01% chance of exploitation in the next 30 days.

Description

Spring Security, versions 5.7 prior to 5.7.5, and 5.6 prior to 5.6.9, and older unsupported versions could be susceptible to a privilege escalation under certain conditions. A malicious user or attacker can modify a request initiated by the Client (via the browser) to the Authorization Server which can lead to a privilege escalation on the subsequent approval. This scenario can happen if the Authorization Server responds with an OAuth2 Access Token Response containing an empty scope list (per RFC 6749, Section 5.1) on the subsequent request to the token endpoint to obtain the access token.

Metrics

CVSS 3.1
8.1/10

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
1.01%

58.7th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
VmwareSpring Security>= 5.6.0, < 5.6.9
VmwareSpring Security>= 5.7.0, < 5.7.5
NetappActive Iq Unified ManagerAll versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2022-31690?
Spring Security, versions 5.7 prior to 5.7.5, and 5.6 prior to 5.6.9, and older unsupported versions could be susceptible to a privilege escalation under certain conditions. A malicious user or attacker can modify a request initiated by the Client (via the browser) to the Authorization Server which can lead to a privilege escalation on the subsequent approval. This scenario can happen if the Authorization Server responds with an OAuth2 Access Token Response containing an empty scope list (per RFC 6749, Section 5.1) on the subsequent request to the token endpoint to obtain the access token.
How severe is CVE-2022-31690?
CVE-2022-31690 has a CVSS score of 8.1/10 (HIGH severity). The EPSS model estimates a 1.01% probability of exploitation in the next 30 days.
How do I fix CVE-2022-31690?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-31690?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST