Published: 2018/02/02  Last Updated: 2018/03/26

Information from NEC Corporation

Vulnerability ID:JVN#15643848
Title:Spring Security and Spring Framework vulnerable to authentication bypass
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.

We provide information on this issue at the following URL
https://jpn.nec.com/security-info/secinfo/nv18-004.html (only in Japanese)