CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
Confidence
High
EPSS
Percentile
50.0%
Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Spring MVC (spring-webmvc module) or Spring WebFlux (spring-webflux module) endpoints. Only non-authenticated endpoints are vulnerable because preflight requests should not include credentials and therefore requests should fail authentication. However a notable exception to this are Chrome based browsers when using client certificates for authentication since Chrome sends TLS client certificates in CORS preflight requests in violation of spec requirements. No HTTP body can be sent or received as a result of this attack.
Vendor | Product | Version | CPE |
---|---|---|---|
vmware | spring_framework | * | cpe:2.3:a:vmware:spring_framework:*:*:*:*:*:*:*:* |
oracle | application_testing_suite | 13.3.0.1 | cpe:2.3:a:oracle:application_testing_suite:13.3.0.1:*:*:*:*:*:*:* |
oracle | communications_brm_-_elastic_charging_engine | 11.3 | cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:11.3:*:*:*:*:*:*:* |
oracle | communications_brm_-_elastic_charging_engine | 12.0 | cpe:2.3:a:oracle:communications_brm_-_elastic_charging_engine:12.0:*:*:*:*:*:*:* |
oracle | communications_diameter_signaling_router | * | cpe:2.3:a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:* |
oracle | communications_element_manager | 8.1.1 | cpe:2.3:a:oracle:communications_element_manager:8.1.1:*:*:*:*:*:*:* |
oracle | communications_element_manager | 8.2.0 | cpe:2.3:a:oracle:communications_element_manager:8.2.0:*:*:*:*:*:*:* |
oracle | communications_element_manager | 8.2.1 | cpe:2.3:a:oracle:communications_element_manager:8.2.1:*:*:*:*:*:*:* |
oracle | communications_policy_management | 12.5.0 | cpe:2.3:a:oracle:communications_policy_management:12.5.0:*:*:*:*:*:*:* |
oracle | communications_session_route_manager | 8.1.1 | cpe:2.3:a:oracle:communications_session_route_manager:8.1.1:*:*:*:*:*:*:* |
[
{
"product": "Spring Framework",
"vendor": "Spring",
"versions": [
{
"lessThan": "v5.2.3.RELEASE",
"status": "affected",
"version": "5.2",
"versionType": "custom"
}
]
}
]
pivotal.io/security/cve-2020-5397
www.oracle.com//security-alerts/cpujul2021.html
www.oracle.com/security-alerts/cpuapr2020.html
www.oracle.com/security-alerts/cpujul2020.html
www.oracle.com/security-alerts/cpujul2022.html
www.oracle.com/security-alerts/cpuoct2020.html
www.oracle.com/security-alerts/cpuoct2021.html
More
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
Confidence
High
EPSS
Percentile
50.0%