Lucene search
F5F5:K18193959HistoryMay 29, 2018 - 12:00 a.m.
K18193959 : Spring Framework vulnerability CVE-2018-1258
2018-05-2900:00:00
my.f5.com
26
Security Advisory Description
Spring Security in combination with Spring Framework versions prior to 5.0.6 contains an authorization bypass when using method security. An unauthorized malicious user can gain unauthorized access to methods that should be restricted. (CVE-2018-1258)
Impact
Traffix SDC
When the vulnerability is exploited, an attacker may gain access to the restricted method.
BIG-IP, BIG-IQ, F5 iWorkflow, Enterprise Manager, ARX, and LineRate
There is no impact; these F5 products are not affected by this vulnerability.
Related
redhatcve
redhatcve
CVE-2018-1258
2018-05-15 22:48:52
osv
osv
veracode
veracode
Unauthorised Access Through Method Security
2018-05-10 07:20:11
prion
prion
Authorization
2018-05-11 20:29:00
ubuntucve
ubuntucve
CVE-2018-1258
2018-05-11 00:00:00
github
github
nvd
nvd
CVE-2018-1258
2018-05-11 20:29:00
symantec
symantec
cve
cve
CVE-2018-1258
2018-05-11 20:29:00
cvelist
cvelist
CVE-2018-1258
2018-05-09 00:00:00
nessus
nessus
Oracle GoldenGate for Big Data 12.2.0.1.x < 12.2.0.1.10 / 12.3.1.1.x < 12.3.1.1.6 Multiple Vulnerabilities (Oct 2018 CPU)
2020-03-05 00:00:00
MySQL Enterprise Monitor 3.4.x < 3.4.10 / 4.x < 4.0.7 / 8.x < 8.0.3 Multiple Vulnerabilities (Oct 2018 CPU)
2020-07-24 00:00:00
Oracle Enterprise Manager Cloud Control (Jul 2019 CPU)
2019-07-17 00:00:00
redhat
redhat
(RHSA-2019:2413) Important: Red Hat Fuse 7.4.0 security update
2019-08-08 10:07:26
myhack58
myhack58
ibm
ibm
oracle
oracle
Oracle Critical Patch Update Advisory - January 2019
2019-01-15 00:00:00
Oracle Critical Patch Update Advisory - April 2019
2019-04-16 00:00:00
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00