Security Advisory

CVE-2023-34034

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-19 14:16:12

Last updated 2026-05-01 03:55:59

Assigner vmware

State PUBLISHED

Description

Using "**" as a pattern in Spring Security configuration for WebFlux creates a mismatch in pattern matching between Spring Security and Spring WebFlux, and the potential for a security bypass.

← Browse all CVEs View on cve.org ↗