CVE-2023-34042

EUVD-2024-0595

05.02.2024, 22:15

The spring-security.xsd file inside the
spring-security-config jar is world writable which means that if it were
extracted it could be written by anyone with access to the file system.

While there are no known exploits, this is an example of “CWE-732:
Incorrect Permission Assignment for Critical Resource” and could result
in an exploit. Users should update to the latest version of Spring
Security to mitigate any future exploits found around this issue.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	4.1 MEDIUM	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N
vmware	CNA	4.1 MEDIUM	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 12%

Affected Products (NVD)

Vendor	Product	Version
vmware	spring_security	5.8.4 ≤ 𝑥 < 5.8.7
vmware	spring_security	6.0.4 ≤ 𝑥 < 6.0.7
vmware	spring_security	6.1.1 ≤ 𝑥 < 6.1.4
vmware	spring_security	5.7.9
vmware	spring_security	5.7.10

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-732 - Incorrect Permission Assignment for Critical Resource
The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

References

https://spring.io/security/cve-2023-34042

https://security.netapp.com/advisory/ntap-20241129-0010/

https://spring.io/security/cve-2023-34042