CVE-2019-3799

CVE Database · CVE-2019-3799

CVE-2019-3799

· MEDIUMModified

CVSS v3.1

6.5

EPSS

85.30%

Published

May 6, 2019

Modified

Nov 21, 2024

Public PoC / Exploit (3)

All weaponized →

Exploit-DBSpring Cloud Config 2.1.x - Path Traversal (Metasploit)NucleiNuclei detection template TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Spring Cloud Config, versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead a directory traversal attack.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Weaknesses (CWE)

CWE-22CWE-22

Affected Products (4)

vmware · spring_cloud_config (up to 1.4.6)vulnerable

vmware · spring_cloud_config (up to 2.0.4)vulnerable

vmware · spring_cloud_config (up to 2.1.2)vulnerable

oracle · communications_cloud_native_core_policyvulnerable

References (4)

https://pivotal.io/security/cve-2019-3799

Vendor Advisory