Vulnerabilities > CVE-2018-1259 - XXE vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
pivotal-software
xmlbeam
CWE-611
NVD
Published: 2018-05-11
Updated: 2022-07-25

Summary

Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with XMLBeam 1.4.14 or earlier versions, contains a property binder vulnerability caused by improper restriction of XML external entity references as underlying library XMLBeam does not restrict external reference expansion. An unauthenticated remote malicious user can supply specially crafted request parameters against Spring Data's projection-based request payload binding to access arbitrary files on the system.

Vulnerable Configurations

Part Description Count
Application
Pivotal_Software
56
Application
Xmlbeam
24

Common Weakness Enumeration (CWE)

D2sec

namePivotal Spring Data Commons / Spring Data REST XXE File Disclosure
urlhttp://www.d2sec.com/exploits/pivotal_spring_data_commons___spring_data_rest_xxe_file_disclosure.html

Redhat

advisories
  • rhsa
    idRHSA-2018:1809
  • rhsa
    idRHSA-2018:3768

References