Lucene search
GoogleOSV:GHSA-4X49-W62V-76Q7HistoryMay 23, 2019 - 8:39 a.m.
Path Traversal in Spring Cloud Config
2019-05-2308:39:23
Google
osv.dev
10
0.026 Low
EPSS
Percentile
90.3%
Spring Cloud Config, versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead a directory traversal attack.
Related
zdt
zdt
Spring Cloud Config 2.1.x - Path Traversal Exploit
2019-05-01 00:00:00
redhatcve
redhatcve
CVE-2019-3799
2019-05-13 08:25:09
cvelist
cvelist
CVE-2019-3799 Directory Traversal with spring-cloud-config-server
2019-04-17 00:00:00
cve
cve
CVE-2019-3799
2019-05-06 16:29:01
exploitpack
exploitpack
Spring Cloud Config 2.1.x - Path Traversal (Metasploit)
2019-04-30 00:00:00
metasploit
metasploit
Spring Cloud Config Server Directory Traversal
2019-04-18 07:24:34
veracode
veracode
Directory Traversal
2019-04-17 09:12:42
nuclei
nuclei
Spring Cloud Config Server - Local File Inclusion
2020-06-22 13:35:37
packetstorm
packetstorm
Spring Cloud Config 2.1.x Path Traversal
2019-04-30 00:00:00
nvd
nvd
CVE-2019-3799
2019-05-06 16:29:01
github
github
Path Traversal in Spring Cloud Config
2019-05-23 08:39:23
myhack58
myhack58
osv
osv
CVE-2019-3799
2019-05-06 16:29:01
prion
prion
Directory traversal
2019-05-06 16:29:00
exploitdb
exploitdb
Spring Cloud Config 2.1.x - Path Traversal (Metasploit)
2019-04-30 00:00:00
openvas
openvas
Generic HTTP Directory Traversal (Web Dirs) - Active Check
2021-07-22 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00