CVE-2023-34042

05.02.2024, 22:15

The spring-security.xsd file inside the
spring-security-config jar is world writable which means that if it were
extracted it could be written by anyone with access to the file system.

While there are no known exploits, this is an example of CWE-732:
Incorrect Permission Assignment for Critical Resource and could result
in an exploit. Users should update to the latest version of Spring
Security to mitigate any future exploits found around this issue.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4.1 MEDIUM	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N
vmware	CNA	4.1 MEDIUM	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N
CISA-ADP	ADP	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 13%

Vendor	Product	Version
vmware	spring_security	5.8.4 ≤ 𝑥 < 5.8.7
vmware	spring_security	6.0.4 ≤ 𝑥 < 6.0.7
vmware	spring_security	6.1.1 ≤ 𝑥 < 6.1.4
vmware	spring_security	5.7.9
vmware	spring_security	5.7.10

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-732 - Incorrect Permission Assignment for Critical Resource
The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

References

https://spring.io/security/cve-2023-34042

https://security.netapp.com/advisory/ntap-20241129-0010/

https://spring.io/security/cve-2023-34042