9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
spring-web is vulnerable to remote code execution (RCE). When it is used with external endpoints regardless of endpoints being authenticated or not, the function HttpInvokerServiceExporter: readRemoteInvocation
allows deserialization of untrusted object if the endpoints are exposed to untrusted clients. It depends on the implementation within a product to mandate an authentication and to protect an application from an authenticated deserialization. The vendor has claimed the behavior to be as intended, but has deprecated the vulnerable Sun’s JDK HTTP server classes in version 6.0.0.
CPE | Name | Operator | Version |
---|---|---|---|
spring web | le | 3.2.18.RELEASE | |
spring web | le | 5.3.26 | |
spring web | le | 3.2.18.RELEASE | |
spring web | le | 5.3.26 |
bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-1000027
github.com/spring-projects/spring-framework/commit/5cbe90b2cd91b866a5a9586e460f311860e11cfa
github.com/spring-projects/spring-framework/commit/a6563a32637a2c188021613189238d4255766f0f
github.com/spring-projects/spring-framework/issues/24434#issuecomment-579669626
github.com/spring-projects/spring-framework/issues/24434#issuecomment-582313417
github.com/spring-projects/spring-framework/issues/24434#issuecomment-744519525
raw.githubusercontent.com/distributedweaknessfiling/cvelist/master/2016/1000xxx/CVE-2016-1000027.json
security-tracker.debian.org/tracker/CVE-2016-1000027
spring.io/blog/2022/05/11/spring-framework-5-3-20-and-5-2-22-available-now
www.tenable.com/security/research/tra-2016-20
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P