cbcvebase.
CVE-2018-1272
published 2018-04-06

CVE-2018-1272: Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported versions, provide client-side support for multipart…

high7.5CVSS 3.1
AVNACHPRLUINSUCHIHAH
Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported versions, provide client-side support for multipart requests. When Spring MVC or Spring WebFlux server application (server A) receives input from a remote client, and then uses that input to make a multipart request to another server (server B), it can be exposed to an attack, where an extra multipart is inserted in the content of the request from server A, causing server B to use the wrong value for a part it expects. This could to lead privilege escalation, for example, if the part content represents a username or user roles.

Affected

69 ranges· showing 25
VendorProductVersion rangeFixed in
debianlibspring-java< libspring-java 4.3.19-1 (bookworm)libspring-java 4.3.19-1 (bookworm)
oracleapplication_testing_suite
oracleapplication_testing_suite
oracleapplication_testing_suite
oracleapplication_testing_suite
oraclebig_data_discovery
oraclecommunications_converged_application_server< 7.0.0.17.0.0.1
oraclecommunications_diameter_signaling_router< 8.38.3
oraclecommunications_performance_intelligence_center< 10.2.110.2.1
oraclecommunications_services_gatekeeper< 6.1.0.4.06.1.0.4.0
oracleenterprise_manager_ops_center
oracleenterprise_manager_ops_center
oraclegoldengate_for_big_data
oraclegoldengate_for_big_data
oraclegoldengate_for_big_data
oraclehealth_sciences_information_manager
oraclehealthcare_master_person_index
oraclehealthcare_master_person_index
oracleinsurance_calculation_engine
oracleinsurance_calculation_engine
oracleinsurance_calculation_engine
oracleinsurance_rules_palette
oracleinsurance_rules_palette
oracleinsurance_rules_palette
oracleinsurance_rules_palette

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.5HIGH