CVE-2018-1272

Description

Possible privilege escalation in org.springframework:spring-core

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

References

• https://nvd.nist.gov/vuln/detail/CVE-2018-1272
• https://github.com/spring-projects/spring-framework/commit/ab2410c754b67902f002bfcc0c3895bd7772d39
• https://github.com/spring-projects/spring-framework/commit/e02ff3a0da50744b0980d5d665fd242eedea767
• https://access.redhat.com/errata/RHSA-2018:1320
• https://access.redhat.com/errata/RHSA-2018:2669
• https://github.com/advisories/GHSA-4487-x383-qpph
• https://pivotal.io/security/cve-2018-1272
• https://www.oracle.com/security-alerts/cpujul2020.html
• https://www.oracle.com/security-alerts/cpuoct2021.html
• https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
• https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
• http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
• http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
• http://www.securityfocus.com/bid/103697
• https://security-tracker.debian.org/tracker/CVE-2018-1272