Lucene search

CVE-2018-1275

🗓️ 11 Apr 2018 13:00:29Reported by [email protected]Type

Spring Framework allows remote code execution via WebSocket STOMP endpoint

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 54
Cvelist	CVE-2018-1275	11 Apr 201813:00	–	cvelist
Cvelist	CVE-2018-1270	6 Apr 201813:00	–	cvelist
Veracode	Remote Code Execution (RCE)	10 Apr 201805:18	–	veracode
Veracode	Remote Code Execution (RCE)	6 Apr 201801:07	–	veracode
Debian CVE	CVE-2018-1275	11 Apr 201813:29	–	debiancve
Debian CVE	CVE-2018-1270	6 Apr 201813:29	–	debiancve
OSV	CVE-2018-1275	11 Apr 201813:29	–	osv
OSV	Improperly Implemented Security Check for Standard in org.springframework:spring-core	17 Oct 201820:28	–	osv
OSV	CVE-2018-1270	6 Apr 201813:29	–	osv
OSV	Spring Framework allows applications to expose STOMP over WebSocket endpoints	17 Oct 201820:05	–	osv

Nvd

Node

vmware spring_frameworkRange4.3.0–4.3.16

vmware spring_frameworkRange5.0.0–5.0.5

Node

oracle application_testing_suiteMatch12.5.0.3

oracle application_testing_suiteMatch13.1.0.1

oracle application_testing_suiteMatch13.2.0.1

oracle application_testing_suiteMatch13.3.0.1

oracle big_data_discoveryMatch1.6.0

oracle communications_converged_application_serverRange<7.0.0.1

oracle communications_diameter_signaling_routerRange<8.3

oracle communications_performance_intelligence_centerRange<10.2.1

oracle communications_services_gatekeeperRange<6.1.0.4.0

oracle goldengate_for_big_dataMatch12.2.0.1

oracle goldengate_for_big_dataMatch12.3.1.1

oracle goldengate_for_big_dataMatch12.3.2.1

oracle health_sciences_information_managerMatch3.0

oracle healthcare_master_person_indexMatch3.0

oracle healthcare_master_person_indexMatch4.0

oracle insurance_calculation_engineMatch10.1.1

oracle insurance_calculation_engineMatch10.2

oracle insurance_calculation_engineMatch10.2.1

oracle insurance_rules_paletteMatch10.0

oracle insurance_rules_paletteMatch10.1

oracle insurance_rules_paletteMatch10.2

oracle insurance_rules_paletteMatch11.0

oracle insurance_rules_paletteMatch11.1

oracle primavera_gatewayMatch15.2

oracle primavera_gatewayMatch16.2

oracle primavera_gatewayMatch17.12

oracle retail_customer_insightsMatch15.0

oracle retail_customer_insightsMatch16.0

oracle retail_open_commerce_platformMatch5.3.0

oracle retail_open_commerce_platformMatch6.0.0

oracle retail_open_commerce_platformMatch6.0.1

oracle retail_order_brokerMatch5.1

oracle retail_order_brokerMatch5.2

oracle retail_order_brokerMatch15.0

oracle retail_order_brokerMatch16.0

oracle retail_predictive_application_serverMatch14.0

oracle retail_predictive_application_serverMatch14.1

oracle retail_predictive_application_serverMatch15.0

oracle retail_predictive_application_serverMatch16.0

oracle service_architecture_leveraging_tuxedoMatch12.1.3.0.0

oracle service_architecture_leveraging_tuxedoMatch12.2.2.0.0

oracle tape_library_acslsMatch8.4

Source	Link
pivotal	www.pivotal.io/security/cve-2018-1275
access	www.access.redhat.com/errata/RHSA-2018:1320
lists	www.lists.apache.org/thread.html/ab825fcade0b49becfa30235b3d54f4a51bb74ea96b6c9adb5d1378c%40%3Cissues.activemq.apache.org%3E
securitytracker	www.securitytracker.com/id/1041301
oracle	www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
oracle	www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
securityfocus	www.securityfocus.com/bid/103771
oracle	www.oracle.com/security-alerts/cpujul2020.html
lists	www.lists.apache.org/thread.html/dcf8599b80e43a6b60482607adb76c64672772dc2d9209ae2170f369%40%3Cissues.activemq.apache.org%3E
oracle	www.oracle.com/security-alerts/cpuoct2021.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Apr 2018 13:29Current

9.5High risk

Vulners AI Score9.5

CVSS27.5

CVSS39.8

EPSS0.89353