Lucene search
DellCVELIST:CVE-2018-1274HistoryApr 10, 2018 - 12:00 a.m.
CVE-2018-1274
2018-04-1000:00:00
dell
www.cve.org
Spring Data Commons, versions 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property path parser vulnerability caused by unlimited resource allocation. An unauthenticated remote malicious user (or attacker) can issue requests against Spring Data REST endpoints or endpoints using property path parsing which can cause a denial of service (CPU and memory consumption).
CNA Affected
[
{
"product": "Spring Framework",
"vendor": "Spring by Pivotal",
"versions": [
{
"status": "affected",
"version": "Versions 1.13 to 1.13.10, 2.0 to 2.0.5"
}
]
}
]Related
prion
prion
Path traversal
2018-04-18 16:29:00
cve
cve
CVE-2018-1274
2018-04-18 16:29:00
osv
osv
Spring Data Commons contain a property path parser vulnerability caused by unlimited resource allocation
2018-10-17 17:23:44
CVE-2018-1274
2018-04-18 16:29:00
github
github
redhatcve
redhatcve
CVE-2018-1274
2018-04-11 05:19:57
veracode
veracode
Denial Of Service (DoS)
2018-04-11 00:27:25
nvd
nvd
CVE-2018-1274
2018-04-18 16:29:00
f5
f5
K29042031 : Multiple Spring Framework vulnerabilities
2018-04-07 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2022
2022-07-19 00:00:00