CVE-2020-5428
Description
In applications using Spring Cloud Task 2.2.4.RELEASE and below, may be vulnerable to SQL injection when exercising certain lookup queries in the TaskExplorer.
Risk Information
Base Score
6.0
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L
EPSS Score
Exploitation Probability
0.277
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2020-5428 are fixed in Spring - spring-cloud-task-dependencies 2.2.5 | Windows |
| Vulnerabilities CVE-2020-5428 are fixed in Spring - spring-cloud-task-dependencies for Linux 2.2.5 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234