SQL Injection Vulnerability in Spring Cloud Data Flow
CVE-2020-5427 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
In Spring Cloud Data Flow, versions 2.6.x prior to 2.6.5, versions 2.5.x prior 2.5.4, an application is vulnerable to SQL injection when requesting task execution.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.