Lucene search
Veracode Vulnerability DatabaseVERACODE:13650HistoryApr 17, 2019 - 9:12 a.m.
Directory Traversal
2019-04-1709:12:42
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.026 Low
EPSS
Percentile
90.3%
spring-cloud-config-server is vulnerable to directory traversal. It is possible because an attacker can serve arbitrary configuration files to the sever through a malicious URL feed into spring-cloud-config-server module.
References
github.com/mpgn/CVE-2019-3799
github.com/spring-cloud/spring-cloud-config/commit/90e8a81f6fa921e034cecb79cd100f343f7714af
github.com/spring-cloud/spring-cloud-config/commit/9617f2922ee2ae27f08676716224933f0d869719
github.com/spring-cloud/spring-cloud-config/commit/d3e21866a5f192fa2582349cb3732ad0e4b8850b
pivotal.io/security/cve-2019-3799
www.oracle.com/security-alerts/cpuapr2022.html
Related
zdt
zdt
Spring Cloud Config 2.1.x - Path Traversal Exploit
2019-05-01 00:00:00
redhatcve
redhatcve
CVE-2019-3799
2019-05-13 08:25:09
cvelist
cvelist
CVE-2019-3799 Directory Traversal with spring-cloud-config-server
2019-04-17 00:00:00
cve
cve
CVE-2019-3799
2019-05-06 16:29:01
exploitpack
exploitpack
Spring Cloud Config 2.1.x - Path Traversal (Metasploit)
2019-04-30 00:00:00
metasploit
metasploit
Spring Cloud Config Server Directory Traversal
2019-04-18 07:24:34
nuclei
nuclei
Spring Cloud Config Server - Local File Inclusion
2020-06-22 13:35:37
packetstorm
packetstorm
Spring Cloud Config 2.1.x Path Traversal
2019-04-30 00:00:00
nvd
nvd
CVE-2019-3799
2019-05-06 16:29:01
osv
osv
Path Traversal in Spring Cloud Config
2019-05-23 08:39:23
CVE-2019-3799
2019-05-06 16:29:01
github
github
Path Traversal in Spring Cloud Config
2019-05-23 08:39:23
myhack58
myhack58
prion
prion
Directory traversal
2019-05-06 16:29:00
exploitdb
exploitdb
Spring Cloud Config 2.1.x - Path Traversal (Metasploit)
2019-04-30 00:00:00
openvas
openvas
Generic HTTP Directory Traversal (Web Dirs) - Active Check
2021-07-22 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00