VMware Tanzu Spring Boot: Attackers can access endpoints

Important security updates close several vulnerabilities in the VMware Tanzu Spring Framework component Spring Boot.

VMware Tanzu Spring Security: Attackers can log in malicious clients

Due to security issues, authentication is bypassable in the context of VMware Tanzu Spring Security, among other things.
Infosecurity-magazine.com

High-Severity Access Control Vulnerability Found in Spring WebFlux

A new security loophole has been found in Spring Security’s latest versions. Tracked as CVE-2023-34034, the flaw has a CVSS score of 9.8. Spring Security is an integral part of the Java-based Spring ...