CVE-2020-5397

Exploit

EPSS 0.89%
Published 17.01.2020 19:15:14
Last modified 21.11.2024 05:34:03
Source security@pivotal.io
Teams watchlist Login
Open Login

Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Spring MVC (spring-webmvc module) or Spring WebFlux (spring-webflux module) endpoints. Only non-authenticated endpoints are vulnerable because preflight requests should not include credentials and therefore requests should fail authentication. However a notable exception to this are Chrome based browsers when using client certificates for authentication since Chrome sends TLS client certificates in CORS preflight requests in violation of spec requirements. No HTTP body can be sent or received as a result of this attack.

Affected products Warnungen 0 Metrics 4 CWE 1 References 10

Data is provided by the National Vulnerability Database (NVD)

VMware ≫ Spring Framework Version >= 5.2.0 < 5.2.3

Oracle ≫ Application Testing Suite Version13.3.0.1

Oracle ≫ Communications Brm - Elastic Charging Engine Version11.3

Oracle ≫ Communications Brm - Elastic Charging Engine Version12.0

Oracle ≫ Communications Diameter Signaling Router Version >= 8.0.0 <= 8.2.2

Oracle ≫ Communications Element Manager Version8.1.1

Oracle ≫ Communications Element Manager Version8.2.0

Oracle ≫ Communications Element Manager Version8.2.1

Oracle ≫ Communications Policy Management Version12.5.0

Oracle ≫ Communications Session Route Manager Version8.1.1

Oracle ≫ Communications Session Route Manager Version8.2.0

Oracle ≫ Communications Session Route Manager Version8.2.1

Oracle ≫ Enterprise Manager Base Platform Version13.2.1.0

Oracle ≫ Financial Services Regulatory Reporting With Agilereporter Version8.0.9.2.0

Oracle ≫ Flexcube Private Banking Version12.0.0

Oracle ≫ Flexcube Private Banking Version12.1.0

Oracle ≫ Healthcare Master Person Index Version4.0.2

Oracle ≫ Insurance Calculation Engine Version >= 11.0.0 <= 11.3.1

Oracle ≫ Insurance Policy Administration J2ee Version10.2.0

Oracle ≫ Insurance Policy Administration J2ee Version10.2.4

Oracle ≫ Insurance Policy Administration J2ee Version11.0.2

Oracle ≫ Insurance Policy Administration J2ee Version11.1.0

Oracle ≫ Insurance Policy Administration J2ee Version11.2.0

Oracle ≫ Insurance Rules Palette Version10.2.0

Oracle ≫ Insurance Rules Palette Version10.2.4

Oracle ≫ Insurance Rules Palette Version11.0.2

Oracle ≫ Insurance Rules Palette Version11.1.0

Oracle ≫ Insurance Rules Palette Version11.2.0

Oracle ≫ Mysql Enterprise Monitor Version >= 4.0.0 <= 4.0.12

Oracle ≫ Mysql Enterprise Monitor Version >= 8.0.0 <= 8.0.20

Oracle ≫ Rapid Planning Version12.1

Oracle ≫ Rapid Planning Version12.2

Oracle ≫ Retail Assortment Planning Version15.0

Oracle ≫ Retail Assortment Planning Version16.0

Oracle ≫ Retail Back Office Version14.1

Oracle ≫ Retail Central Office Version14.1

Oracle ≫ Retail Financial Integration Version15.0

Oracle ≫ Retail Financial Integration Version16.0

Oracle ≫ Retail Integration Bus Version15.0.3

Oracle ≫ Retail Integration Bus Version16.0.3

Oracle ≫ Retail Order Broker Version15.0

Oracle ≫ Retail Order Broker Version16.0

Oracle ≫ Retail Point-of-service Version14.1

Oracle ≫ Retail Predictive Application Server Version14.0.3

Oracle ≫ Retail Predictive Application Server Version14.1.3

Oracle ≫ Retail Predictive Application Server Version15.0.3.0

Oracle ≫ Retail Predictive Application Server Version16.0.3.0

Oracle ≫ Retail Returns Management Version14.1

Oracle ≫ Retail Service Backbone Version15.0

Oracle ≫ Retail Service Backbone Version16.0

Oracle ≫ Weblogic Server Version12.2.1.3.0

Oracle ≫ Weblogic Server Version12.2.1.4.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.89%	0.744

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
nvd@nist.gov	2.6	4.9	2.9	AV:N/AC:H/Au:N/C:N/I:P/A:N
security@pivotal.io	5.3	3.9	1.4	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

https://www.oracle.com//security-alerts/cpujul2021.html

Patch

Third Party Advisory

https://www.oracle.com/security-alerts/cpuoct2021.html

Patch

Third Party Advisory

https://www.oracle.com/security-alerts/cpuapr2020.html

Patch

Third Party Advisory

https://www.oracle.com/security-alerts/cpujul2020.html

Patch

Third Party Advisory