CVE-2020-5398

Опубликовано: 17 янв. 2020

Источник: nvd

CVSS3: 8

CVSS3: 7.5

CVSS2: 7.6

EPSS Критический

Описание

In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerable to a reflected file download (RFD) attack when it sets a "Content-Disposition" header in the response where the filename attribute is derived from user supplied input.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:vmware:spring_framework:*:*:*:*:*:*:*:*

Версия от 5.0.0 (включая) до 5.0.16 (исключая)

cpe:2.3:a:vmware:spring_framework:*:*:*:*:*:*:*:*

Версия от 5.1.0 (включая) до 5.1.13 (исключая)

cpe:2.3:a:vmware:spring_framework:*:*:*:*:*:*:*:*

Версия от 5.2.0 (включая) до 5.2.3 (исключая)

Конфигурация 2

Одно из

cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_billing_and_revenue_management_elastic_charging_engine:11.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_billing_and_revenue_management_elastic_charging_engine:12.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.5.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:*

Версия от 8.0.0 (включая) до 8.2.2 (включая)

cpe:2.3:a:oracle:communications_element_manager:8.1.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_element_manager:8.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_element_manager:8.2.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_policy_management:12.5.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_session_report_manager:8.1.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_session_report_manager:8.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_session_report_manager:8.2.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_session_route_manager:8.1.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_session_route_manager:8.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_session_route_manager:8.2.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:enterprise_manager_base_platform:13.2.1.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:financial_services_regulatory_reporting_with_agilereporter:8.0.9.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:flexcube_private_banking:12.0.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:flexcube_private_banking:12.1.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:healthcare_master_person_index:4.0.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_calculation_engine:*:*:*:*:*:*:*:*

Версия от 11.0.0 (включая) до 11.3.1 (включая)

cpe:2.3:a:oracle:insurance_policy_administration_j2ee:10.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_policy_administration_j2ee:10.2.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_policy_administration_j2ee:11.0.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_policy_administration_j2ee:11.1.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_policy_administration_j2ee:11.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_policy_administration_j2ee:11.2.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_rules_palette:10.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_rules_palette:10.2.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_rules_palette:11.0.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_rules_palette:11.1.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:insurance_rules_palette:11.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*

Версия от 4.0.0 (включая) до 4.0.12 (включая)

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*

Версия от 8.0.0 (включая) до 8.0.20 (включая)

cpe:2.3:a:oracle:rapid_planning:12.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:rapid_planning:12.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_assortment_planning:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_assortment_planning:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_back_office:14.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_bulk_data_integration:16.0.3.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_central_office:14.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_financial_integration:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_financial_integration:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_integration_bus:15.0.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_integration_bus:16.0.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_broker:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_point-of-service:14.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_predictive_application_server:14.0.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_predictive_application_server:14.1.3.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_predictive_application_server:15.0.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_predictive_application_server:16.0.3.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_returns_management:14.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_service_backbone:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_service_backbone:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:siebel_engineering_-_installer_\&_deployment:*:*:*:*:*:*:*:*

Версия до 2.1.1 (включая)

cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:netapp:data_availability_services:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.90572

Критический

8 High

CVSS3

7.5 High

CVSS3

7.6 High

CVSS2

Дефекты

CWE-79

CWE-494

Связанные уязвимости

CVE-2020-5398

CVSS3: 7.5

ubuntu

больше 5 лет назад

CVE-2020-5398

CVSS3: 8

redhat

больше 5 лет назад

CVE-2020-5398

CVSS3: 7.5

debian

больше 5 лет назад

In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x pri ...

GHSA-8wx2-9q48-vm9r

CVSS3: 7.5

github

больше 5 лет назад

RFD attack via Content-Disposition header sourced from request input by Spring MVC or Spring WebFlux Application

BDU:2020-02695

CVSS3: 8

fstec

около 5 лет назад

Уязвимость компонента Spring Framework программного продукта Oracle Retail Order Broker, позволяющая нарушителю получить полный контроль над приложением

EPSS

Процентиль: 100%

0.90572

Критический

8 High

CVSS3

7.5 High

CVSS3

7.6 High

CVSS2

Дефекты

CWE-79

CWE-494