CVE-2018-1273
CRITICAL CISA KEV EPSS 99.9%
Published Apr 11, 20188y ago · Modified Jun 26, 20264d ago
9.8 CVSS 3.1
Published Apr 11, 2018 8y ago
Last Modified Jun 26, 2026 4d ago
KEV Listed Mar 25, 2022 4y ago
KEV Due Apr 15, 2022 1538d overdue
Description
Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property binder vulnerability caused by improper neutralization of special elements. An unauthenticated remote malicious user (or attacker) can supply specially crafted request parameters against Spring Data REST backed HTTP resources or using Spring Data's projection-based request payload binding hat can lead to a remote code execution attack.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
CISA Known Exploited Overdue 1538d
- Added
- Mar 25, 2022
- Due
- Apr 15, 2022
Apply updates per vendor instructions.
EPSS Exploit Probability
99.9% percentile
Exploit & Patch Status
Actively Exploited (KEV)
Patch Available
Weaknesses 1
CWE-94 Improper Control of Generation of Code (Code Injection) Injection
Affected Products 11
| Vendor | Product | Version | Range |
|---|---|---|---|
| broadcom | spring_data_commons | * | ≤1.12.10 |
| broadcom | spring_data_commons | * | ≥1.13.0 – ≤1.13.10 |
| broadcom | spring_data_commons | * | ≥2.0.0 – ≤2.0.5 |
| pivotal_software | spring_data_rest | * | ≥3.0.0 – ≤3.0.5 |
| vmware | spring_data_rest | * | ≤2.5.10 |
| vmware | spring_data_rest | * | ≥2.6.0 – ≤2.6.10 |
| apache | ignite | * | ≥1.0.1 – ≤2.5.0 |
| apache | ignite | 1.0.0 | any |
| apache | ignite | 1.0.0 | any |
| oracle | financial_services_crime_and_compliance_management_studio | 8.0.8.2.0 | any |
| oracle | financial_services_crime_and_compliance_management_studio | 8.0.8.3.0 | any |
References 4
- mail-archives.apache.org http://mail-archives.apache.org/mod_mbox/ignite-dev/201807.mbox/%3CCAK0qHnqzfzmCDFFi6c5Jok19zNkVCz5Xb4sU%3D0f2J_1i4p46zQ%40mail.gmail.com%3E
- pivotal.io https://pivotal.io/security/cve-2018-1273
- cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-1273
- oracle.com https://www.oracle.com/security-alerts/cpujul2022.html
Remediation
- oracle.com https://www.oracle.com/security-alerts/cpujul2022.html