CVE-2016-4977

nvd nist nuclei

Published: May 25, 2017Modified: May 13, 2026

8.8

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

When processing authorization requests using the whitelabel views in Spring Security OAuth 2.0.0 to 2.0.9 and 1.0.0 to 1.0.5, the response_type parameter value was executed as Spring SpEL which enabled a malicious user to trigger remote code execution via the crafting of the value for response_type.

Affected (16)

Products: Pivotal: Spring Security Oauth

1 product

Spring Security Oauth

Configuration A

16 vulnerable

Vulnerable Software	Affected Versions
Pivotal Spring Security Oauth	Version 1.0.0
Pivotal Spring Security Oauth	Version 1.0.1
Pivotal Spring Security Oauth	Version 1.0.2
Pivotal Spring Security Oauth	Version 1.0.3
Pivotal Spring Security Oauth	Version 1.0.4
Pivotal Spring Security Oauth	Version 1.0.5
Pivotal Spring Security Oauth	Version 2.0.0
Pivotal Spring Security Oauth	Version 2.0.1
Pivotal Spring Security Oauth	Version 2.0.2
Pivotal Spring Security Oauth	Version 2.0.3
Pivotal Spring Security Oauth	Version 2.0.4
Pivotal Spring Security Oauth	Version 2.0.5
Pivotal Spring Security Oauth	Version 2.0.6
Pivotal Spring Security Oauth	Version 2.0.7
Pivotal Spring Security Oauth	Version 2.0.8
Pivotal Spring Security Oauth	Version 2.0.9

Related CWEs

References (12)

http://www.openwall.com/lists/oss-security/2019/10/16/1

Source: security_alert@emc.com

https://lists.apache.org/thread.html/0841d849c23418c473ccb9183cbf41a317cb0476e44be48022ce3488%40%3Cdev.fineract.apache.org%3E

Source: security_alert@emc.com

https://lists.apache.org/thread.html/37d7e820fc65a768de3e096e98382d5529a52a039f093e59357d0bc0%40%3Cdev.fineract.apache.org%3E

Source: security_alert@emc.com

https://lists.apache.org/thread.html/5e6dd946635bbcc9e1f2591599ad0fab54f2dc3714196af3b17893f2%40%3Cannounce.apache.org%3E

Source: security_alert@emc.com

https://lists.apache.org/thread.html/96c017115069408cec5e82ce1e6293facab398011f6db7e1befbe274%40%3Cdev.fineract.apache.org%3E

Source: security_alert@emc.com

https://pivotal.io/security/cve-2016-4977

Source: security_alert@emc.com

Vendor Advisory

http://www.openwall.com/lists/oss-security/2019/10/16/1

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.apache.org/thread.html/0841d849c23418c473ccb9183cbf41a317cb0476e44be48022ce3488%40%3Cdev.fineract.apache.org%3E

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.apache.org/thread.html/37d7e820fc65a768de3e096e98382d5529a52a039f093e59357d0bc0%40%3Cdev.fineract.apache.org%3E

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.apache.org/thread.html/5e6dd946635bbcc9e1f2591599ad0fab54f2dc3714196af3b17893f2%40%3Cannounce.apache.org%3E

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.apache.org/thread.html/96c017115069408cec5e82ce1e6293facab398011f6db7e1befbe274%40%3Cdev.fineract.apache.org%3E

Source: af854a3a-2127-422b-91ae-364da2661108

https://pivotal.io/security/cve-2016-4977

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.