CVE-2018-11039

CWE-6489 documents7 sources

Severity

5.9MEDIUM

EPSS

2.6%

top 14.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Pivotal Spring Framework Oracle Communications Diameter Signaling Router Oracle Communications Performance Intelligence Center +31 more

Timeline

PublishedJun 25

Latest updateOct 16

Description

Spring Framework (versions 5.0.x prior to 5.0.7, versions 4.3.x prior to 4.3.18, and older unsupported versions) allow web applications to change the HTTP request method to any HTTP method (including TRACE) using the HiddenHttpMethodFilter in Spring MVC. If an application has a pre-existing XSS vulnerability, a malicious user (or attacker) can use this filter to escalate to an XST (Cross Site Tracing) attack.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages35 packages

▶NVDvmware/spring_framework5.0.0 — 5.0.7+1

▶CVEListV5pivotal/spring_framework5.0.x — 5.0.7+1

▶Mavenorg.springframework:spring-web5.0.0 — 5.0.7+1

▶Debianlibspring-java< 4.3.19-1+3

▶NVDoracle/retail_predictive_application_server4 versions+3

Also affects: Debian Linux 9.0

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

Spring Framework Cross Site Tracing (XST)↗2018-10-16

▶

OSV

Spring Framework Cross Site Tracing (XST)↗2018-10-16

▶

CVEList

CVE-2018-11039: Spring Framework (versions 5↗2018-06-25

▶

OSV

CVE-2018-11039: Spring Framework (versions 5↗2018-06-25

▶

📋Vendor Advisories

Red Hat

springframework: Cross Site Tracing (XST) if vulnerable to XSS↗2018-06-14

▶

Debian

CVE-2018-11039: libspring-java - Spring Framework (versions 5.0.x prior to 5.0.7, versions 4.3.x prior to 4.3.18,...↗2018

▶

💬Community

Bugzilla

CVE-2018-11039 springframework: Cross Site Tracing (XST) if vulnerable to XSS↗2018-06-15

▶

Bugzilla

CVE-2018-11039 springframework: Cross Site Tracing (XST) if vulnerable to XSS [fedora-all]↗2018-06-15

▶