VYPR

Maven package

org.springframework.vault/spring-vault-core

pkg:maven/org.springframework.vault/spring-vault-core

Vulnerabilities (1)

  • CVE-2023-20859Mar 23, 2023
    affected >= 3.0.0, < 3.0.2fixed 3.0.2

    In Spring Vault, versions 3.0.x prior to 3.0.2 and versions 2.3.x prior to 2.3.3 and older versions, an application is vulnerable to insertion of sensitive information into a log file when it attempts to revoke a Vault batch token.