exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2018-1257

около 7 лет назад

Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a regular expression, denial of service attack.

CVSS3: 6.5

EPSS: Низкий

CVE-2018-1257

около 7 лет назад

Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a regular expression, denial of service attack.

CVSS3: 4.8

EPSS: Низкий

CVE-2018-1257

около 7 лет назад

Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a regular expression, denial of service attack.

CVSS3: 6.5

EPSS: Низкий

CVE-2018-1257

около 7 лет назад

Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior ...

CVSS3: 6.5

EPSS: Низкий

GHSA-rcpf-vj53-7h2m

больше 6 лет назад

Denial of Service in org.springframework:spring-core

CVSS3: 6.5

EPSS: Низкий

BDU:2019-01761

около 7 лет назад

Уязвимость программной платформы Spring Framework, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 6.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2018-1257 Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a regular expression, denial of service attack.	CVSS3: 6.5	1% Низкий	около 7 лет назад
CVE-2018-1257 Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a regular expression, denial of service attack.	CVSS3: 4.8	1% Низкий	около 7 лет назад
CVE-2018-1257 Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a regular expression, denial of service attack.	CVSS3: 6.5	1% Низкий	около 7 лет назад
CVE-2018-1257 Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior ...	CVSS3: 6.5	1% Низкий	около 7 лет назад
GHSA-rcpf-vj53-7h2m Denial of Service in org.springframework:spring-core	CVSS3: 6.5	1% Низкий	больше 6 лет назад
BDU:2019-01761 Уязвимость программной платформы Spring Framework, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 6.5	1% Низкий	около 7 лет назад

Уязвимостей на страницу