pkg:Maven/org.springframework.security.oauth:spring-security-oauth2

All known vulnerabilities

• CRITICAL9.8CVE-2018-1260Spring Security OAuth vulnerable to remote code execution (RCE)
  >= 2.3.0, < 2.3.3
• HIGH8.8CVE-2016-4977Spring Security OAuth vulnerable to remote code execution (RCE) via specially crafted request using whitelabel views
  >= 2.0.0, < 2.0.10
• HIGH8.1Authorization bypass in org.springframework.security.oauth:spring-security-oauth2
  >= 2.0.0, < 2.0.16
• MEDIUM6.5Denial of service in Spring Security OAuth2
  >= 2.5.0.RELEASE, < 2.5.2.RELEASE
• MEDIUM6.5spring-security-oauth and spring-security-oauth2 Open Redirect vulnerability
  from 0, < 2.0.17.RELEASE