CVE-2018-1261

CVE Database · CVE-2018-1261

CVE-2018-1261

· MEDIUMModified

CVSS v3.1

4.7

EPSS

1.29%

Published

May 11, 2018

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Spring-integration-zip versions prior to 1.0.1 exposes an arbitrary file write vulnerability, which can be achieved using a specially crafted zip archive (affects other archives as well, bzip2, tar, xz, war, cpio, 7z) that holds path traversal filenames. So when the filename gets concatenated to the target extraction directory, the final path ends up outside of the target folder.

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

Weaknesses (CWE)

CWE-22

Affected Products (1)

vmware · spring_integration_zip (up to 1.0.1)vulnerable

References (4)

http://www.securityfocus.com/bid/104178

Third Party AdvisoryVDB Entry

https://pivotal.io/security/cve-2018-1261

Vendor Advisory

http://www.securityfocus.com/bid/104178

Third Party AdvisoryVDB Entry

https://pivotal.io/security/cve-2018-1261

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs