← back
CVE-2019-3799

Directory Traversal with spring-cloud-config-server

EPSS 85.3%CWE-22
Spring Cloud Config, versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead a directory traversal attack.
Affected products
Spring · Spring Cloud Config
public PoCs found3
githubgithub.com/mpgn/CVE-2019-379931githubgithub.com/Corgizz/SpringCloud0exploitdbwww.exploit-db.com/exploits/46772unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://pivotal.io/security/cve-2019-3799https://www.oracle.com/security-alerts/cpuapr2022.html