CVE-2019-11269

MEDIUM

Spring Security OAuth 2.0.0-2.0.17 - Open Redirect via redirect_uri Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-11269.

AI-analyzed exploit summary This is a technical analysis of CVE-2019-11269, an open redirect vulnerability in Spring Security OAuth. The writeup includes details about the vulnerable code in DefaultRedirectResolver, the attack vector involving manipulation of the redirect_uri parameter, and a proof-of-concept request demonstrating the bypass.

Description

Spring Security OAuth versions 2.3 prior to 2.3.6, 2.2 prior to 2.2.5, 2.1 prior to 2.1.5, and 2.0 prior to 2.0.18, as well as older unsupported versions could be susceptible to an open redirector attack that can leak an authorization code. A malicious user or attacker can craft a request to the authorization endpoint using the authorization code grant type, and specify a manipulated redirection URI via the redirect_uri parameter. This can cause the authorization server to redirect the resource owner user-agent to a URI under the control of the attacker with the leaked authorization code.

Exploits (1)

exploitdb WRITEUP

webappsjava

https://www.exploit-db.com/exploits/47000

View Code ZIP pw:eip

This is a technical analysis of CVE-2019-11269, an open redirect vulnerability in Spring Security OAuth. The writeup includes details about the vulnerable code in DefaultRedirectResolver, the attack vector involving manipulation of the redirect_uri parameter, and a proof-of-concept request demonstrating the bypass.

Classification

Writeup 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Spring Security OAuth versions 2.3 prior to 2.3.6, 2.2 prior to 2.2.5, 2.1 prior to 2.1.5, and 2.0 prior to 2.0.18

No auth needed

Prerequisites: Access to the authorization endpoint · A valid client_id

MITRE ATT&CK

T1505 - Server Software Component T1566.002 - Spearphishing Link

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory x_refsource_misc

https://www.oracle.com/security-alerts/cpujan2021.html

Vendor Advisory x_refsource_confirm

https://pivotal.io/security/cve-2019-11269

Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/153299/Spring-Security-OAuth-2.3-Open-Redirection.html

Scores

CVSS v3 5.4

EPSS 0.0635

EPSS Percentile 91.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

Details

CWE

CWE-601

Status published

Products (5)

oracle/banking_corporate_lending 14.1.0

oracle/banking_corporate_lending 14.3.0

oracle/banking_corporate_lending 14.4.0

org.springframework.security.oauth/spring-security-oauth 2.0.0.RELEASE - 2.0.18.RELEASEMaven

pivotal_software/spring_security_oauth 2.0.0 - 2.0.18

Published Jun 12, 2019

Tracked Since Feb 18, 2026