CVE-2018-1272
HIGHSpring Framework 4.3.0-4.3.14 - Privilege Escalation via Multipart Request Parameter Tampering
Title source: llmDescription
Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported versions, provide client-side support for multipart requests. When Spring MVC or Spring WebFlux server application (server A) receives input from a remote client, and then uses that input to make a multipart request to another server (server B), it can be exposed to an attack, where an extra multipart is inserted in the content of the request from server A, causing server B to use the wrong value for a part it expects. This could to lead privilege escalation, for example, if the part content represents a username or user roles.
References (10)
Core 10
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/103697
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:2669
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:1320
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
Patch, Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
Patch, Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpujul2020.html
Patch, Third Party Advisory x_refsource_confirm
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
Patch, Third Party Advisory x_refsource_misc
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
Vendor Advisory x_refsource_confirm
https://pivotal.io/security/cve-2018-1272
Patch, Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpuoct2021.html
Scores
CVSS v3
7.5
EPSS
0.0217
EPSS Percentile
84.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (50)
oracle/application_testing_suite
12.5.0.3
oracle/application_testing_suite
13.1.0.1
oracle/application_testing_suite
13.2.0.1
oracle/application_testing_suite
13.3.0.1
oracle/big_data_discovery
1.6.0
oracle/communications_converged_application_server
< 7.0.0.1
oracle/communications_diameter_signaling_router
< 8.3
oracle/communications_performance_intelligence_center
< 10.2.1
oracle/communications_services_gatekeeper
< 6.1.0.4.0
oracle/enterprise_manager_ops_center
12.2.2
... and 40 more
Published
Apr 06, 2018
Tracked Since
Feb 18, 2026