The usage of String.toLowerCase() and String.toUpperCase() has some Locale dependent exceptions that could potentially result in authorization rules not working properly.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.springframework.security:spring-security-core(Maven) | 0 | 5.7.14 | N/A |
| org.springframework.security:spring-security-core(Maven) | 5.8.0 | 5.8.16 | N/A |
| org.springframework.security:spring-security-core(Maven) | 6.0.0 | 6.0.14 | N/A |
| org.springframework.security:spring-security-core(Maven) | 6.1.0 | 6.1.12 | N/A |
| org.springframework.security:spring-security-core(Maven) | 6.2.0 | 6.2.8 | N/A |
| org.springframework.security:spring-security-core(Maven) | 6.3.0 | 6.3.5 | N/A |
CVSS Metrics
