You are viewing this page in an unauthorized frame window.
This is a potential security issue, you are being redirected to
https://nvd.nist.gov
An official website of the United States government
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock () or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
NIST is currently working to establish a consortium to address challenges in the NVD
program and develop improved tools and methods. You will temporarily see delays in analysis efforts
during this transition. We apologize for the inconvenience and ask for your patience as we
work to improve the NVD program.
CVE-2019-3778
Detail
Description
Spring Security OAuth, versions 2.3 prior to 2.3.5, and 2.2 prior to 2.2.4, and 2.1 prior to 2.1.4, and 2.0 prior to 2.0.17, and older unsupported versions could be susceptible to an open redirector attack that can leak an authorization code. A malicious user or attacker can craft a request to the authorization endpoint using the authorization code grant type, and specify a manipulated redirection URI via the "redirect_uri" parameter. This can cause the authorization server to redirect the resource owner user-agent to a URI under the control of the attacker with the leaked authorization code. This vulnerability exposes applications that meet all of the following requirements: Act in the role of an Authorization Server (e.g. @EnableAuthorizationServer) and uses the DefaultRedirectResolver in the AuthorizationEndpoint. This vulnerability does not expose applications that: Act in the role of an Authorization Server and uses a different RedirectResolver implementation other than DefaultRedirectResolver, act in the role of a Resource Server only (e.g. @EnableResourceServer), act in the role of a Client only (e.g. @EnableOAuthClient).
NVD Analysts use publicly available information to associate vector strings and CVSS scores. We also display any CVSS information provided within the CVE List from the CNA.
Note: NVD Analysts have published a CVSS score for this CVE based on publicly available information at the time of analysis. The CNA has not provided a score within the CVE List.
NVD Analysts use publicly available information to associate vector strings and CVSS scores. We also display any CVSS information provided within the CVE List from the CNA.
Note: NVD Analysts have published a CVSS score for this CVE based on publicly available information at the time of analysis. The CNA has not provided a score within the CVE List.
References to Advisories, Solutions, and Tools
By selecting these links, you will be leaving NIST webspace.
We have provided these links to other web sites because they
may have information that would be of interest to you. No
inferences should be drawn on account of other sites being
referenced, or not, from this page. There may be other web
sites that are more appropriate for your purpose. NIST does
not necessarily endorse the views expressed, or concur with
the facts presented on these sites. Further, NIST does not
endorse any commercial products that may be mentioned on
these sites. Please address comments about this page to nvd@nist.gov.
OR
*cpe:2.3:a:oracle:banking_corporate_lending:14.1.0:*:*:*:*:*:*:*
*cpe:2.3:a:oracle:banking_corporate_lending:14.3.0:*:*:*:*:*:*:*
*cpe:2.3:a:oracle:banking_corporate_lending:14.4.0:*:*:*:*:*:*:*
Removed
CVSS V3
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Added
CVSS V3.1
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Changed
Reference Type
http://packetstormsecurity.com/files/153299/Spring-Security-OAuth-2.3-Open-Redirection.html No Types Assigned
http://packetstormsecurity.com/files/153299/Spring-Security-OAuth-2.3-Open-Redirection.html Third Party Advisory, VDB Entry
Changed
Reference Type
https://www.oracle.com/security-alerts/cpujan2021.html No Types Assigned
https://www.oracle.com/security-alerts/cpujan2021.html Third Party Advisory
OR
*cpe:2.3:a:pivotal_software:spring_security_oauth:*:*:*:*:*:*:*:* versions from (including) 2.0.0 up to (excluding) 2.0.17
*cpe:2.3:a:pivotal_software:spring_security_oauth:*:*:*:*:*:*:*:* versions from (including) 2.1.0 up to (excluding) 2.1.4
*cpe:2.3:a:pivotal_software:spring_security_oauth:*:*:*:*:*:*:*:* versions from (including) 2.2.0 up to (excluding) 2.2.4
*cpe:2.3:a:pivotal_software:spring_security_oauth:*:*:*:*:*:*:*:* versions from (including) 2.3.0 up to (exclu
Added
CVSS V2
(AV:N/AC:L/Au:N/C:P/I:P/A:N)
Added
CVSS V3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Added
CWE
CWE-601
Changed
Reference Type
http://www.securityfocus.com/bid/107153 No Types Assigned
http://www.securityfocus.com/bid/107153 Third Party Advisory, VDB Entry
Changed
Reference Type
https://pivotal.io/security/cve-2019-3778 No Types Assigned
Spring Security OAuth, versions 2.3 prior to 2.3.5, and 2.2 prior to 2.2.4, and 2.1 prior to 2.1.4, and 2.0 prior to 2.0.17, and older unsupported versions could be susceptible to an open redirector attack that can leak an authorization code. A malicious user or attacker can craft a request to the authorization endpoint using the authorization code grant type, and specify a manipulated redirection URI via the "redirect_uri" parameter. This can cause the authorization server to redirect the resou
Spring Security OAuth, versions 2.3 prior to 2.3.5, and 2.2 prior to 2.2.4, and 2.1 prior to 2.1.4, and 2.0 prior to 2.0.17, and older unsupported versions could be susceptible to an open redirector attack that can leak an authorization code. A malicious user or attacker can craft a request to the authorization endpoint using the authorization code grant type, and specify a manipulated redirection URI via the "redirect_uri" parameter. This can cause the authorization server to redirect the resou
Quick Info
CVE Dictionary Entry: CVE-2019-3778 NVD
Published Date: 03/07/2019 NVD
Last Modified: 01/29/2021
Source: Dell