Lucene search
K

145 matches found

Veracode
Veracode
added 2018/01/31 3:11 a.m.27 views

Security Constraint Bypass

spring-security-web and spring-web are vulnerable to security bypass with static resources. Spring uses the output of getPathInfo when mapping security constraints and requests. It is not standardized whether the path parameters should be included in the value from getPathInfo. Using this...

5.3CVSS5.6AI score0.02857EPSS
Exploits0References10Affected Software2
OSV
OSV
added 2018/01/10 3:29 p.m.2 views

UBUNTU-CVE-2017-7559

In Undertow 2.x before 2.0.0.Alpha2, 1.4.x before 1.4.17.Final, and 1.3.x before 1.3.31.Final, it was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that als...

6.1CVSS6.5AI score0.01655EPSS
Exploits0References2
OSV
OSV
added 2018/01/10 3:29 p.m.2 views

DEBIAN-CVE-2017-7559

In Undertow 2.x before 2.0.0.Alpha2, 1.4.x before 1.4.17.Final, and 1.3.x before 1.3.31.Final, it was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that als...

6.1CVSS6AI score0.01655EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/01/03 10:31 a.m.2 views

undertow: HTTP Request smuggling vulnerability (incomplete fix of CVE-2017-2666)

It was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the...

6.5CVSS7.2AI score0.02712EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/01/03 10:30 a.m.5 views

undertow: HTTP Request smuggling vulnerability (incomplete fix of CVE-2017-2666)

It was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the...

6.5CVSS7.2AI score0.02712EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/01/03 10:20 a.m.2 views

undertow: HTTP Request smuggling vulnerability (incomplete fix of CVE-2017-2666)

It was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the...

6.5CVSS7.2AI score0.02712EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/12/13 6:26 p.m.2 views

undertow: HTTP Request smuggling vulnerability (incomplete fix of CVE-2017-2666)

It was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the...

6.5CVSS7.2AI score0.02712EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/12/13 5:48 p.m.3 views

undertow: HTTP Request smuggling vulnerability (incomplete fix of CVE-2017-2666)

It was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the...

6.5CVSS7.2AI score0.02712EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/12/13 5:31 p.m.3 views

undertow: HTTP Request smuggling vulnerability (incomplete fix of CVE-2017-2666)

It was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the...

6.5CVSS7.2AI score0.02712EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/08/10 11:3 p.m.5 views

Security: Improper handling of path parameters allows bypassing the security constraint

It was found that Spring Security does not consider URL path parameters when processing security constraints. By adding a URL path parameter with an encoded / to a request an attacker may be able to bypass a security constraint...

7.5CVSS5.7AI score0.01416EPSS
Exploits0References5
Prion
Prion
added 2017/01/06 10:59 p.m.20 views

Design/Logic Flaw

An issue was discovered in Pivotal Spring Security before 3.2.10, 4.1.x before 4.1.4, and 4.2.x before 4.2.1. Spring Security does not consider URL path parameters when processing security constraints. By adding a URL path parameter with an encoded "/" to a request, an attacker may be able to...

5CVSS6.6AI score0.01416EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2017/01/06 10:59 p.m.28 views

CVE-2016-9879

An issue was discovered in Pivotal Spring Security before 3.2.10, 4.1.x before 4.1.4, and 4.2.x before 4.2.1. Spring Security does not consider URL path parameters when processing security constraints. By adding a URL path parameter with an encoded "/" to a request, an attacker may be able to...

7.5CVSS7.4AI score0.01416EPSS
Exploits0References3
OSV
OSV
added 2017/01/06 10:59 p.m.24 views

CVE-2016-9879

An issue was discovered in Pivotal Spring Security before 3.2.10, 4.1.x before 4.1.4, and 4.2.x before 4.2.1. Spring Security does not consider URL path parameters when processing security constraints. By adding a URL path parameter with an encoded "/" to a request, an attacker may be able to...

7.5CVSS6.4AI score0.01416EPSS
Exploits0References3
CVE
CVE
added 2017/01/06 10:0 p.m.113 views

CVE-2016-9879

CVE-2016-9879 affects Spring Security 3.2.x/4.1.x/4.2.x prior to fixed versions. The root cause is how path parameters are handled in the Servlet API: getPathInfo() may include encoded "/" characters, allowing an attacker to bypass security constraints when a request contains a path parameter wit...

7.5CVSS7.3AI score0.01416EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/01/06 10:0 p.m.39 views

CVE-2016-9879

An issue was discovered in Pivotal Spring Security before 3.2.10, 4.1.x before 4.1.4, and 4.2.x before 4.2.1. Spring Security does not consider URL path parameters when processing security constraints. By adding a URL path parameter with an encoded "/" to a request, an attacker may be able to...

7.4AI score0.01416EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2017/01/03 3:18 p.m.34 views

CVE-2016-9879

It was found that Spring Security does not consider URL path parameters when processing security constraints. By adding a URL path parameter with an encoded / to a request an attacker may be able to bypass a security constraint. Mitigation Use a Servlet container known not to include path...

7.5CVSS3.4AI score0.01416EPSS
Exploits0References2
Veracode
Veracode
added 2016/12/28 6:10 a.m.34 views

Security Constraint Bypass

Spring security web is vulnerable to security constraint bypass. It does not consider URL path parameters when processing security constraints. By adding an URL path parameter with an encoded / to a request, an attacker is able to bypass a security constraint. The root cause of this issue is a la...

7.5CVSS7.3AI score0.01416EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/08/16 12:0 a.m.8 views

The vulnerability of the Firefox browser, which allows a hacker to modify arbitrary files

The vulnerability of the Firefox browser’s Updater component is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to modify arbitrary files by manipulating application path parameters and hard links...

4.7CVSS6.8AI score0.00245EPSS
Exploits0References3Affected Software1
Exploit DB
Exploit DB
added 2013/07/29 12:0 a.m.21 views

WebDisk 3.0.2 PhotoViewer iOS - Command Execution

Title: ====== WebDisk 3.0.2 PhotoViewer iOS - Command Execution Vulnerability Date: ===== 2013-07-27 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1035 VL-ID: ===== 1035 Common Vulnerability Scoring System: ==================================== 8.8 Introduction:...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2012/09/05 12:0 a.m.27 views

QNAP Turbo NAS 3.7.3 File Disclosure

Vulnerability: Multiple Path Injection Product: QNAP Turbo NAS Vendor: QNAP Version affected: = 3.7.3 build 20120801 Status: Unpatched Website: http://web.qnap.com/prodetailfeature.asp?pid=202 Discovered by: Andrea Fabrizi Email: [email protected] Web: http://www.andreafabrizi.it This...

7.4AI score
Exploits0
Rows per page
Query Builder