Description

Spring Cloud Config, versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead a directory traversal attack.

Remediation

References

https://pivotal.io/security/cve-2019-3799

https://www.oracle.com/security-alerts/cpuapr2022.html

Related Vulnerabilities

CVE-2013-2055 Vulnerability in maven package org.apache.wicket:wicket

CVE-2019-10452 Vulnerability in maven package org.jenkins-ci.plugins:view26

CVE-2018-12536 Vulnerability in maven package org.eclipse.jetty:jetty-server

CVE-2011-3375 Vulnerability in maven package org.apache.tomcat:catalina

CVE-2022-31147 Vulnerability in maven package org.webjars.npm:jquery-validation

Severity

High

Classification

CWE-22 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Tags

Vendor Advisory Patch Third Party Advisory