Lucene search

[email protected]CVE-2018-15756

HistoryOct 18, 2018 - 10:29 p.m.

CVE-2018-15756

2018-10-1822:29:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

132

spring framework

cve

2018

15756

denial of service

vulnerability

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

75.6%

JSON

Spring Framework, version 5.1, versions 5.0.x prior to 5.0.10, versions 4.3.x prior to 4.3.20, and older unsupported versions on the 4.2.x branch provide support for range requests when serving static resources through the ResourceHttpRequestHandler, or starting in 5.0 when an annotated controller returns an org.springframework.core.io.Resource. A malicious user (or attacker) can add a range header with a high number of ranges, or with wide ranges that overlap, or both, for a denial of service attack. This vulnerability affects applications that depend on either spring-webmvc or spring-webflux. Such applications must also have a registration for serving static resources (e.g. JS, CSS, images, and others), or have an annotated controller that returns an org.springframework.core.io.Resource. Spring Boot applications that depend on spring-boot-starter-web or spring-boot-starter-webflux are ready to serve static resources out of the box and are therefore vulnerable.

CPENameOperatorVersion
vmware:spring_frameworkvmware spring frameworklt4.3.20
vmware:spring_frameworkvmware spring frameworklt5.0.10
vmware:spring_frameworkvmware spring frameworkeq5.1.0
oracle:flexcube_private_bankingoracle flexcube private bankingeq12.1.0
oracle:insurance_policy_administration_j2eeoracle insurance policy administration j2eeeq10.2.0
oracle:retail_xstore_point_of_serviceoracle retail xstore point of serviceeq7.1
oracle:weblogic_serveroracle weblogic servereq12.1.3.0.0
oracle:retail_invoice_matchingoracle retail invoice matchingeq13.0
oracle:flexcube_private_bankingoracle flexcube private bankingeq12.0.1
oracle:primavera_gatewayoracle primavera gatewayeq16.2

CPE	Name	Operator	Version
vmware:spring_framework	vmware spring framework	lt	4.3.20
vmware:spring_framework	vmware spring framework	lt	5.0.10
vmware:spring_framework	vmware spring framework	eq	5.1.0
oracle:flexcube_private_banking	oracle flexcube private banking	eq	12.1.0
oracle:insurance_policy_administration_j2ee	oracle insurance policy administration j2ee	eq	10.2.0
oracle:retail_xstore_point_of_service	oracle retail xstore point of service	eq	7.1
oracle:weblogic_server	oracle weblogic server	eq	12.1.3.0.0
oracle:retail_invoice_matching	oracle retail invoice matching	eq	13.0
oracle:flexcube_private_banking	oracle flexcube private banking	eq	12.0.1
oracle:primavera_gateway	oracle primavera gateway	eq	16.2

Rows per page:

1-10 of 1141

References

www.securityfocus.com/bid/105703

lists.apache.org/thread.html/339fd112517e4873695b5115b96acdddbfc8f83b10598528d37c7d12%40%3Cissues.activemq.apache.org%3E

lists.apache.org/thread.html/77886fec378ee6064debb1efb6b464a4a0173b2ff0d151ed86d3a228%40%3Cissues.activemq.apache.org%3E

lists.apache.org/thread.html/7b156ee50ba3ecce87b33c06bf7a749d84ffee55e69bfb5eca88fcc3%40%3Cissues.activemq.apache.org%3E

lists.apache.org/thread.html/8a1fe70534fc52ff5c9db5ac29c55657f802cbefd7e9d9850c7052bd%40%3Cissues.activemq.apache.org%3E

lists.apache.org/thread.html/a3071e11c6fbd593022074ec1b4693f6d948c2b02cfa4a5d854aed68%40%3Cissues.activemq.apache.org%3E

lists.apache.org/thread.html/bb354962cb51fff65740d5fb1bc2aac56af577c06244b57c36f98e4d%40%3Cissues.activemq.apache.org%3E

lists.apache.org/thread.html/d6a84f52db89804b0ad965f3ea2b24bb880edee29107a1c5069cc3dd%40%3Cissues.activemq.apache.org%3E

lists.apache.org/thread.html/efaa52b0aa67aae7cbd9e6ef96945387e422d7ce0e65434570a37b1d%40%3Cissues.activemq.apache.org%3E

lists.apache.org/thread.html/f8905507a2c94af6b08b72d7be0c4b8c6660e585f00abfafeccc86bc%40%3Cissues.activemq.apache.org%3E

lists.debian.org/debian-lts-announce/2021/04/msg00022.html

pivotal.io/security/cve-2018-15756

www.oracle.com//security-alerts/cpujul2021.html

www.oracle.com/security-alerts/cpuapr2020.html

www.oracle.com/security-alerts/cpujan2020.html

www.oracle.com/security-alerts/cpujan2021.html

www.oracle.com/security-alerts/cpujul2020.html

www.oracle.com/security-alerts/cpuoct2021.html

www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

Social References

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

75.6%

JSON

Related for CVE-2018-15756

ibm13 symantec1 nessus9 debiancve1 redhatcve1 prion1 veracode1 osv3 ubuntucve1 github1 redhat2 debian1 openvas1 atlassian1 oracle8