Guest

Cisco Security

Effective 2019 Sep 15, Cisco will no longer publish non-Cisco product alerts. Cisco will continue to publish Security Advisories to address third-party software vulnerabilities per the Cisco Security Vulnerability Policy.

Multivendor Vulnerability Alert

Pivotal Spring Security OAuth Open Redirector Vulnerability

Critical
Alert ID:
59742
First Published:
2019 March 11 21:13 GMT
Version: 
1
CVE-2019-3778
CWE-601
CVSS Score:
Base 9.8, Temporal 8.5Click Icon to Copy Verbose Score
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
CVE-2019-3778
CWE-601