5.3

CVSS Score

3.1

Basic Information

CVE ID

CVE-2025-22223

GHSA ID

GHSA-hh3m-g4qj-4835

EPSS Score

0.01692%

CWE

CWE-290

Published

3/24/2025

Updated

3/24/2025

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-22223

CVE-2025-22223: Spring Security Vulnerable to Authorization Bypass via Security Annotations

Spring Security 6.4.0 - 6.4.3 may not correctly locate method security annotations on parameterized types or methods. This may cause an authorization bypass.

You are not affected if you are not using @EnableMethodSecurity, or you do not have method security annotations on parameterized types or methods, or all method security annotations are attached to target methods

(GitHub Advisory)

5.3

CVSS Score

3.1

Basic Information

CVE ID

CVE-2025-22223

GHSA ID

GHSA-hh3m-g4qj-4835

EPSS Score

0.01692%

CWE

CWE-290

Published

3/24/2025

Updated

3/24/2025

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.springframework.security:spring-security-core	maven

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from how method security annotations were discovered in inheritance hierarchies. The pre-patch implementation in findClosestMethodAnnotations used getDeclaredMethod() which doesn't account for generic type parameters when resolving overridden methods. This caused security annotations on parameterized superclass/interface methods to be missed, allowing unauthorized access. The commit introduced a new findMethod() helper with ResolvableType checks to properly handle generics, confirming the original implementation was vulnerable.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

Sprin* S**urity *.*.* - *.*.* m*y not *orr**tly lo**t* m*t*o* s**urity *nnot*tions on p*r*m*t*riz** typ*s or m*t*o*s. T*is m*y **us* *n *ut*oriz*tion *yp*ss. You *r* not *****t** i* you *r* not usin* @*n**l*M*t*o*S**urity, or you *o not **v* m*t*o*

Reasoning

T** vuln*r**ility st*ms *rom *ow m*t*o* s**urity *nnot*tions w*r* *is*ov*r** in in**rit*n** *i*r*r**i*s. T** pr*-p*t** impl*m*nt*tion in `*in**los*stM*t*o**nnot*tions` us** `**t***l*r**M*t*o*()` w*i** *o*sn't ***ount *or **n*ri* typ* p*r*m*t*rs w**n

5.3

Basic Information

Concerned about an active attack path?

CVE-2025-22223: Spring Security Vulnerable to Authorization Bypass via Security Annotations

5.3

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI