CVE Tools
Sign in

CVE-2024-22234

CVE-2024-22234: Broken Access Control in Spring Security With Direct Use of isFullyAuthenticated

Published: Feb 20, 2024Updated: Apr 2, 2025 Sources: CVE List NVD GHSA BDUCWE-284
NVD MITRE
7.4CVSSHIGH
EPSS Score
0.7%
Top 52.4%
CISA KEV
Not in KEV
Exploits
No Known Exploits
Remediation
Patch Available

Description

In Spring Security, versions 6.1.x prior to 6.1.7 and versions 6.2.x prior to 6.2.2, an application is vulnerable to broken access control when it directly uses the AuthenticationTrustResolver.isFullyAuthenticated(Authentication) method. Specifically, an application is vulnerable if: * The application uses AuthenticationTrustResolver.isFullyAuthenticated(Authentication) directly and a null authentication parameter is passed to it resulting in an erroneous true return value. An application is not vulnerable if any of the following is true: * The application does not use AuthenticationTrustResolver.isFullyAuthenticated(Authentication) directly. * The application does not pass null to AuthenticationTrustResolver.isFullyAuthenticated * The application only uses isFullyAuthenticated via Method Security https://docs.spring.io/spring-security/reference/servlet/authorization/method-security.html  or HTTP Request Security https://docs.spring.io/spring-security/reference/servlet/authorization/authorize-http-requests.html

CVSS Vector Breakdown

AV:NAC:HPR:NUI:NS:UC:HI:HA:N
Exploitability
AV:NAttack Vector
Network
AC:HAttack Complexity
High
PR:NPrivileges Required
None
UI:NUser Interaction
None
Scope
S:UScope
Unchanged
Impact
C:HConfidentiality
High
I:HIntegrity
High
A:NAvailability
None
Open in CVSS calculator →

Weaknesses

CWE-284

Affected Products

Spring SecuritySpringOSS Libraries
Spring SecurityBroadcom Inc.
LibraryLibrary
OSS Libraries / generic-library
spring securityvmware
LibraryLibrary
OSS Libraries / web-framework
org.springframework.security:spring-security-coreMavenOSS Libraries
springoss-projectOSS Librariesaka spring framework, spring boot, spring security
broadcom inc.commercialUSCloud & SaaSaka vmware by broadcom
vmwarecommercialUSCloud & SaaSaka vmware inc
mavenpackage-ecosystemOSS Libraries

Exploitability

Official Patch Available

References

https://spring.io/security/cve-2024-22234
spring.io
https://security.netapp.com/advisory/ntap-20240315-0003/
security.netapp.com
https://access.redhat.com/security/cve/cve-2024-22234
access.redhat.com
and 6 more references View all →

Timeline

Published
Feb 20, 2024
Last Updated
Apr 2, 2025

Unlock Complete Vulnerability Intelligence

Get the full picture for CVE-2024-22234 and every CVE in our database. Create a free account — no credit card required.

Create Free Account
Plain-language analysis
Impact assessment and exploitation scenario in plain English
Attack graph visualization
Interactive attack path and kill chain mapping
Exploit details & PoC links
ExploitDB, Metasploit, GitHub PoCs with direct links
Nuclei scanner templates
Ready-to-use vulnerability scanner templates
Full remediation guide
Patch instructions, workarounds, and compliance impact
Interactive AI chat
Ask questions about this vulnerability in natural language
Related vulnerabilities
Semantically similar CVEs and attack patterns
REST API & MCP access
Integrate vulnerability data into your workflows