Unrated severityNVD Advisory· Published Jan 27, 2021· Updated Sep 16, 2024
Possibility of SQL Injection in Spring Cloud Data Flow Task Execution Sorting Query
CVE-2020-5427
Description
In Spring Cloud Data Flow, versions 2.6.x prior to 2.6.5, versions 2.5.x prior 2.5.4, an application is vulnerable to SQL injection when requesting task execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: >=2.5.0 <2.5.4 || >=2.6.0 <2.6.5
- Spring by VMware/Spring Cloud Data Flowv5Range: 2.6
Patches
Vulnerability mechanics
References
1- tanzu.vmware.com/security/cve-2020-5427mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.