Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-3578HistoryFeb 19, 2015 - 8:59 p.m.
CVE-2014-3578
2015-02-1920:59:00
Debian Security Bug Tracker
security-tracker.debian.org
17
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.3%
Directory traversal vulnerability in Pivotal Spring Framework 3.x before 3.2.9 and 4.0 before 4.0.5 allows remote attackers to read arbitrary files via a crafted URL.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libspring-java | < 3.2.13-1 | libspring-java_3.2.13-1_all.deb |
| Debian | 11 | all | libspring-java | < 3.2.13-1 | libspring-java_3.2.13-1_all.deb |
| Debian | 10 | all | libspring-java | < 3.2.13-1 | libspring-java_3.2.13-1_all.deb |
| Debian | 999 | all | libspring-java | < 3.2.13-1 | libspring-java_3.2.13-1_all.deb |
| Debian | 13 | all | libspring-java | < 3.2.13-1 | libspring-java_3.2.13-1_all.deb |
Related
prion
prion
Directory traversal
2015-02-19 20:59:00
cve
cve
CVE-2014-3578
2015-02-19 20:59:00
github
github
jvn
jvn
JVN#49154900: Spring Framework vulnerable to directory traversal
2014-06-13 00:00:00
osv
osv
libspring-java - security update
2019-07-13 00:00:00
libspring-java vulnerabilities
2021-03-17 17:02:03
ubuntucve
ubuntucve
CVE-2014-3578
2015-02-19 00:00:00
ibm
ibm
nessus
nessus
Debian DLA-1853-1 : libspring-java security update
2019-07-15 00:00:00
Ubuntu 16.04 ESM : Spring Framework vulnerabilities (USN-4774-1)
2023-10-20 00:00:00
debian
debian
[SECURITY] [DLA 1853-1] libspring-java security update
2019-07-13 21:20:48
openvas
openvas
Debian: Security Advisory (DLA-1853-1)
2019-07-14 00:00:00
Ubuntu: Security Advisory (USN-4774-1)
2023-01-27 00:00:00
ubuntu
ubuntu
Spring Framework vulnerabilities
2021-03-17 00:00:00
redhat
redhat
(RHSA-2015:0720) Important: Red Hat JBoss Fuse Service Works 6.0.0 security update
2015-03-24 20:57:38
(RHSA-2015:0235) Important: Red Hat JBoss BRMS 6.0.3 security update
2015-02-17 22:22:40
(RHSA-2015:0675) Important: Red Hat JBoss Data Virtualization 6.1.0 update
2015-03-11 16:43:55
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.3%
Related for DEBIANCVE:CVE-2014-3578