V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2018-11039
DEB
Low

Spring Framework (versions 5.0.x prior to 5.0.7, versions 4.3.x prior to 4.3.18, and older unsupported versions) allow web applications to …

CVSS
3.7
Low
EPSS
0.03
p84
Published
2018-01-01
Updated
2018-01-01
Description

Spring Framework (versions 5.0.x prior to 5.0.7, versions 4.3.x prior to 4.3.18, and older unsupported versions) allow web applications to change the HTTP request method to any HTTP method (including TRACE) using the HiddenHttpMethodFilter in Spring MVC. If an application has a pre-existing XSS vulnerability, a malicious user (or attacker) can use this filter to escalate to an XST (Cross Site Tracing) attack.

Tags · CWE
Pre-auth
CWE-648
CAPEC-107
CAPEC-234
Affected products
Libspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-javaLibspring-java
CVSS vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Timeline
2018-01-01
Published
2018-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: H
High (H)
Privileges Required
PR: N
None (N)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: L
Low (L)
Integrity Impact
I: N
None (N)
Availability Impact
A: N
None (N)
Exploit indicators
EPSS
0.028 · p84
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Debian
Debian LinuxLibspring-java
Canonical
Libspring-java
Oracle
Weblogic ServerEnterprise Manager Base PlatformEnterprise Manager Ops CenterRetail Xstore Point Of ServiceCommunications Diameter Signaling RouterMysql Enterprise MonitorApplication Testing SuitePrimavera P6 Enterprise Project Portfolio ManagementCommunications Unified Inventory ManagementAgile Plm+21
Vmware
Spring Framework
ProductVendorStatus
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
libspring-javaTracked
Showing first 20 of 54
Source databases
DEB
CVE
UBU
Related vulnerabilities
BDU:2019-00563