06 Mai 2019
Vulnérabilité CVE-2019-3799 CVE Vulnerability
Publié par . Publié dans Directory traversal
Spring Cloud Config, versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead a directory traversal attack. (CVSS:4.3) (Last Update:2019-05-06)
Vulnerability Details : Spring Cloud Config, versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead a directory traversal attack. Publish Date : 2019-05-06 Last Update Date : 2019-05-06 - CVSS Scores & Vulnerability Types CVSS Score | 4.3 | Confidentiality Impact | Partial(There is considerable informational disclosure.) | Integrity Impact | None(There is no impact to the integrity of the system) | Availability Impact | None(There is no impact to the availability of the system.) | Access Complexity | Medium(The access conditions are somewhat specialized. Some preconditions must be satistified to exploit) | Authentication | Not required(Authentication is not required to exploit the vulnerability.) | Gained Access | None | Vulnerability Type(s) | Directory traversal | CWE ID | 22 | | | - Products Affected By CVE-2019-3799 # | Product Type | Vendor | Product | Version | Update | Edition | Language | | No vulnerable product found. If the vulnerability is created recently it may take a few days to gather vulnerable products list and other information like cvss scores. Please check again in a few days. | - References For CVE-2019-3799 | |
- Metasploit Modules Related To CVE-2019-3799 Spring Cloud Config Server Directory Traversal | This module exploits an unauthenticated directory traversal vulnerability which exists in Spring Cloud Config versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6. Spring Cloud Config listens by default on port 8888. Module type : auxiliary Rank : normal |
| |