CVE-2018-1229
CVE-2018-1229
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.8%KEV nãoPoC —Patch —
Ciclo de vida
21 mar 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Pivotal Spring Batch Admin, all versions, contains a stored XSS vulnerability in the file upload feature. An unauthenticated malicious user with network access to Spring Batch Admin could store an arbitrary web script that would be executed by other users. This issue has not been patched because Spring Batch Admin has reached end of life.
Productos afectados
Spring by Pivotal · Spring Batch Admin¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →