CVE-2018-1196

MEDIUM5.9EPSS 0.60%

Moderate severity vulnerability that affects org.springframework.boot:spring-boot

發布日:2018/10/18修改日:2023/11/8

描述

Spring Boot supports an embedded launch script that can be used to easily run the application as a systemd or init.d linux service. The script included with Spring Boot 1.5.9 and earlier and 2.0.0.M1 through 2.0.0.M7 is susceptible to a symlink attack which allows the "run_user" to overwrite and take ownership of any file on the same system. In order to instigate the attack, the application must be installed as a service and the "run_user" requires shell access to the server. Spring Boot application that are not installed as a service, or are not using the embedded launch script are not susceptible.

受影響套件(1)

Maven/org.springframework.boot:spring-boot>= 1.5.0, < 1.5.10

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	MEDIUM5.9	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

參考連結(3)

ADVISORYhttps://github.com/advisories/GHSA-xx65-cc7g-9pfp
ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2018-1196
WEBhttps://pivotal.io/security/cve-2018-1196