← voltar
CVE-2018-1229

CVE-2018-1229

EPSS 0.8%CWE-79
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 0.8%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
21 mar 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Pivotal Spring Batch Admin, all versions, contains a stored XSS vulnerability in the file upload feature. An unauthenticated malicious user with network access to Spring Batch Admin could store an arbitrary web script that would be executed by other users. This issue has not been patched because Spring Batch Admin has reached end of life.
Produtos afetados
Spring by Pivotal · Spring Batch Admin

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://pivotal.io/security/cve-2018-1229http://www.securityfocus.com/bid/103462