CVE-2023-34042 | VMware Spring Security up to 5.7.10/5.8.6/6.0.6/6.1.3 on Critical spring-security.xsd permission assignment

A vulnerability, which was classified as problematic, has been found in VMware Spring Security up to 5.7.10/5.8.6/6.0.6/6.1.3 on Critical. Affected by this issue is some unknown functionality of the file spring-security.xsd. The manipulation leads to incorrect permission assignment.

This vulnerability is handled as CVE-2023-34042. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.