CVE-2023-20863: Input Validation
First published: Thu Apr 13 2023(Updated: )
A flaw was found in Spring Framework. Certain versions of Spring Framework's Expression Language were not restricting the size of Spring Expressions. This could allow an attacker to craft a malicious Spring Expression to cause a denial of service on the server.
Credit: security@vmware.com security@vmware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware Spring Framework | >=5.2.0<5.2.24 | |
| VMware Spring Framework | >=5.3.0<5.3.27 | |
| VMware Spring Framework | >=6.0.0<6.0.8 | |
| IBM Watson Knowledge Catalog on-prem | <=4.x | |
| redhat/spring framework | <6.0.8 | 6.0.8 |
| redhat/spring framework | <5.3.27 | 5.3.27 |
| redhat/spring framework | <5.2.24. | 5.2.24. |
| maven/org.springframework:spring-expression | <5.2.24.RELEASE | 5.2.24.RELEASE |
| maven/org.springframework:spring-expression | >=5.3.0<5.3.27 | 5.3.27 |
| maven/org.springframework:spring-expression | >=6.0.0<6.0.8 | 6.0.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2023-20863 https://nvd.nist.gov/vuln/detail/CVE-2023-20863 https://spring.io/security/cve-2023-20863
- https://bugzilla.redhat.com/show_bug.cgi?id=2187742
- https://access.redhat.com/errata/RHSA-2023:2099
- https://access.redhat.com/errata/RHSA-2023:2100
- https://access.redhat.com/security/cve/cve-2023-20863
- https://spring.io/security/cve-2023-20863
- https://exchange.xforce.ibmcloud.com/vulnerabilities/252807
- https://www.ibm.com/support/pages/node/7009747 (Advisory)
- https://nvd.nist.gov/vuln/detail/CVE-2023-20863
- https://github.com/spring-projects/spring-framework/commit/b73f5fcac22555f844cf27a7eeb876cb9d7f7f7e
- https://github.com/advisories/GHSA-wxqc-pxw9-g2p8 (Advisory)
- https://github.com/spring-projects/spring-framework/commit/965a6392757d20f9db19241126fcc719a51eac15
- https://github.com/spring-projects/spring-framework/commit/ebc82654282bda547fbc20a9749ab1bda886a46f
Frequently Asked Questions
What is the vulnerability CVE-2023-20863?
CVE-2023-20863 is a flaw in Spring Framework where certain versions of Spring Framework's Expression Language do not restrict the size of Spring Expressions, allowing an attacker to cause a denial of service on the server.
What is the severity of CVE-2023-20863?
The severity of CVE-2023-20863 is medium with a CVSS score of 6.5.
Which versions of Spring Framework are affected by CVE-2023-20863?
Versions of Spring Framework prior to 5.2.24, 5.3.27, and 6.0.8 are affected by CVE-2023-20863.
How can I fix CVE-2023-20863?
To fix CVE-2023-20863, update your Spring Framework to version 5.2.24, 5.3.27, or 6.0.8.
Where can I find more information about CVE-2023-20863?
You can find more information about CVE-2023-20863 at the following references: [CVE-2023-20863](https://www.cve.org/CVERecord?id=CVE-2023-20863), [NVD](https://nvd.nist.gov/vuln/detail/CVE-2023-20863), [Spring Security](https://spring.io/security/cve-2023-20863), [Red Hat Bugzilla](https://bugzilla.redhat.com/show_bug.cgi?id=2187742), [Red Hat Security Advisory](https://access.redhat.com/errata/RHSA-2023:2099).
- collector/redhat-cve
- collector/nvd-index
- collector/ibm-support
- agent/type
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-20863
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/severity
- agent/softwarecombine
- agent/description
- agent/event
- collector/nvd-cve
- source/NVD
- agent/author
- collector/github-advisory
- source/GitHub
- alias/GHSA-wxqc-pxw9-g2p8
- agent/tags
- collector/github-advisory-latest
- vendor/vmware
- canonical/vmware spring framework
- version/vmware spring framework/5.2.0
- version/vmware spring framework/5.3.0
- version/vmware spring framework/6.0.0
- vendor/ibm
- canonical/ibm watson knowledge catalog on-prem
- version/ibm watson knowledge catalog on-prem/4.x
- package-manager/redhat
- package-manager/maven