CVE-2020-5427

In Spring Cloud Data Flow, versions 2.6.x prior to 2.6.5, versions 2.5.x prior 2.5.4, an application is vulnerable to SQL injection when requesting task execution.
References
Link Resource
https://tanzu.vmware.com/security/cve-2020-5427 Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:vmware:spring_cloud_data_flow:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_cloud_data_flow:*:*:*:*:*:*:*:*

Information

Published : 2021-01-27 06:15

Updated : 2021-02-04 04:09


NVD link : CVE-2020-5427

Mitre link : CVE-2020-5427

Products Affected
No products.
CWE