Lucene search
GoogleOSV:CVE-2019-11269HistoryJun 12, 2019 - 3:29 p.m.
CVE-2019-11269
2019-06-1215:29:00
Google
osv.dev
6
Spring Security OAuth versions 2.3 prior to 2.3.6, 2.2 prior to 2.2.5, 2.1 prior to 2.1.5, and 2.0 prior to 2.0.18, as well as older unsupported versions could be susceptible to an open redirector attack that can leak an authorization code. A malicious user or attacker can craft a request to the authorization endpoint using the authorization code grant type, and specify a manipulated redirection URI via the redirect_uri parameter. This can cause the authorization server to redirect the resource owner user-agent to a URI under the control of the attacker with the leaked authorization code.
Related
nvd
nvd
CVE-2019-11269
2019-06-12 15:29:00
veracode
veracode
Open Redirection
2019-05-31 05:11:43
cvelist
cvelist
CVE-2019-11269 Open Redirector in spring-security-oauth2
2019-05-30 00:00:00
prion
prion
Authorization
2019-06-12 15:29:00
github
github
Open Redirect in Spring Security OAuth
2019-06-13 20:18:28
ibm
ibm
osv
osv
Open Redirect in Spring Security OAuth
2019-06-13 20:18:28
cve
cve
CVE-2019-11269
2019-06-12 15:29:00
redhatcve
redhatcve
CVE-2019-11269
2019-05-31 08:52:34
exploitpack
exploitpack
Spring Security OAuth - Open Redirector
2019-06-17 00:00:00
githubexploit
githubexploit
Exploit for Open Redirect in Pivotal Software Spring Security Oauth
2019-10-14 02:15:39
zdt
zdt
Spring Security OAuth - Open Redirector Vulnerability
2019-06-18 00:00:00
packetstorm
packetstorm
Spring Security OAuth 2.3 Open Redirection
2019-06-17 00:00:00
exploitdb
exploitdb
Spring Security OAuth - Open Redirector
2019-06-17 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2021
2021-01-19 00:00:00