SQL Injection Vulnerability in Spring Cloud Data Flow

SQL Injection Vulnerability in Spring Cloud Data Flow

CVE-2020-5427 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

In Spring Cloud Data Flow, versions 2.6.x prior to 2.6.5, versions 2.5.x prior 2.5.4, an application is vulnerable to SQL injection when requesting task execution.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.