GHSA-xx65-cc7g-9pfp

Source

https://github.com/advisories/GHSA-xx65-cc7g-9pfp

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-xx65-cc7g-9pfp/GHSA-xx65-cc7g-9pfp.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-xx65-cc7g-9pfp

Aliases

CVE-2018-1196

Published

2018-10-18T18:05:57Z

Modified

2023-11-08T03:59:48.367735Z

Severity

5.9 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

Moderate severity vulnerability that affects org.springframework.boot:spring-boot

Details

Spring Boot supports an embedded launch script that can be used to easily run the application as a systemd or init.d linux service. The script included with Spring Boot 1.5.9 and earlier and 2.0.0.M1 through 2.0.0.M7 is susceptible to a symlink attack which allows the "runuser" to overwrite and take ownership of any file on the same system. In order to instigate the attack, the application must be installed as a service and the "runuser" requires shell access to the server. Spring Boot application that are not installed as a service, or are not using the embedded launch script are not susceptible.

Database specific

{
    "nvd_published_at": "2018-03-19T18:29:00Z",
    "github_reviewed_at": "2020-06-16T22:04:53Z",
    "severity": "MODERATE",
    "github_reviewed": true,
    "cwe_ids": [
        "CWE-59"
    ]
}

References

Affected packages

Maven / org.springframework.boot:spring-boot

Package

Name: org.springframework.boot:spring-boot; View open source insights on deps.dev
Purl: pkg:maven/org.springframework.boot/spring-boot

Affected ranges

Type: ECOSYSTEM
Events: Introduced

1.5.0

Fixed

1.5.10

Affected versions

1.*

1.5.0.RELEASE

1.5.1.RELEASE

1.5.2.RELEASE

1.5.3.RELEASE

1.5.4.RELEASE

1.5.5.RELEASE

1.5.6.RELEASE

1.5.7.RELEASE

1.5.8.RELEASE

1.5.9.RELEASE