Vulnerability CVE-2018-1257


Published: 2018-05-11

Description:
Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a regular expression, denial of service attack.

Type:

CWE-20

(Improper Input Validation)

CVSS2 => (AV:N/AC:L/Au:S/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4/10
2.9/10
8/10
Exploit range
Attack complexity
Authentication
Remote
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Redhat -> Openshift 
Pivotal software -> Spring framework 
Oracle -> Retail open commerce platform 
Oracle -> Retail order broker 
Oracle -> Agile product lifecycle management 
Oracle -> Retail predictive application server 
Oracle -> Application testing suite 
Oracle -> Service architecture leveraging tuxedo 
Oracle -> Big data discovery 
Oracle -> Tape library acsls 
Oracle -> Communications diameter signaling router 
Oracle -> Weblogic server 
Oracle -> Endeca information discovery integrator 
Oracle -> Communications unified inventory management 
Oracle -> Enterprise manager for mysql database 
Oracle -> Enterprise manager base platform 
Oracle -> Goldengate for big data 
Oracle -> Enterprise manager ops center 
Oracle -> Health sciences information manager 
Oracle -> Flexcube private banking 
Oracle -> Healthcare master person index 
Oracle -> Utilities network management system 
Oracle -> Hospitality guest access 
Oracle -> Insurance calculation engine 
Oracle -> Insurance rules palette 
Oracle -> Primavera gateway 
Oracle -> Retail customer insights 

 References:
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
http://www.securityfocus.com/bid/104260
https://access.redhat.com/errata/RHSA-2018:1809
https://access.redhat.com/errata/RHSA-2018:3768
https://pivotal.io/security/cve-2018-1257
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

Copyright 2020, cxsecurity.com

 

Back to Top