CVE-2015-5211Files or Directories Accessible to External Parties in BY Vmware Spring Framework

CWE-552Files or Directories Accessible to External PartiesCWE-20Improper Input ValidationCWE-35Path Traversal: '.../...//'13 documents8 sources
Severity
9.6CRITICALNVD
OSV8.8
EPSS
1.9%
top 16.63%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Spring BY Vmware Spring FrameworkDebian LinuxVmware Spring Framework
Timeline
PublishedMay 25
Latest updateApr 30

Description

Under some situations, the Spring Framework 4.2.0 to 4.2.1, 4.0.0 to 4.1.7, 3.2.0 to 3.2.14 and older unsupported versions is vulnerable to a Reflected File Download (RFD) attack. The attack involves a malicious user crafting a URL with a batch script extension that results in the response being downloaded rather than rendered and also includes some input reflected in the response.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:HExploitability: 2.8 | Impact: 6.0

Affected Packages2 packages

CVEListV5spring_by_vmware/spring_framework4.34.3.29+3
NVDvmware/spring_framework35 versions+34

Also affects: Debian Linux 8.0

🔴Vulnerability Details

6
GHSA
Improper Input Validation in Spring Framework2021-04-30
OSV
libspring-java vulnerabilities2021-03-17
GHSA
Files or Directories Accessible to External Parties in org.springframework:spring-core2018-10-17
OSV
Files or Directories Accessible to External Parties in org.springframework:spring-core2018-10-17
OSV
CVE-2015-5211: Under some situations, the Spring Framework 42017-05-25

📋Vendor Advisories

3
Ubuntu
Spring Framework vulnerabilities2021-03-17
Red Hat
springframework: RFD protection bypass via jsessionid2020-09-17
Debian
CVE-2015-5211: libspring-java - Under some situations, the Spring Framework 4.2.0 to 4.2.1, 4.0.0 to 4.1.7, 3.2....2015

💬Community

3
Bugzilla
CVE-2020-5421 springframework: RFD protection bypass via jsessionid2020-09-21
Bugzilla
CVE-2015-5211 springframework: Spring Framework: Reflected File Download (RFD) vulnerability [fedora-all]2015-10-19
Bugzilla
CVE-2015-5211 Spring Framework: Reflected File Download (RFD) vulnerability2015-10-19
CVE-2015-5211 — CRITICAL severity | cvebase