Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2021-22118

In Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux application is vulnerable to a privilege escalation: by (re)creating the temporary storage directory, a locally authenticated malicious user can read or modify files that have been uploaded to the WebFlux application, or overwrite arbitrary files with multipart request data.

CVSS v3:

  • Severity: High
  • Score: 7.8
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: Low
  • Score: 4.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
vmware / spring_framework 5.2.0 5.2.15
vmware / spring_framework 5.3.0 5.3.7
oracle / retail_order_broker 16.0 16.0.x
oracle / retail_predictive_application_server 15.0.3 15.0.3.x
oracle / enterprise_data_quality 12.2.1.3.0 12.2.1.3.0.x
oracle / retail_assortment_planning 16.0 16.0.x
oracle / retail_financial_integration 16.0.3 16.0.3.x
oracle / communications_network_integrity 7.3.6 7.3.6.x
oracle / retail_integration_bus 16.0.3 16.0.3.x
oracle / insurance_rules_palette 11.0.2 11.0.2.x
oracle / insurance_rules_palette 11.1.0 11.1.0.x
oracle / communications_interactive_session_recorder 6.4 6.4.x
oracle / commerce_guided_search 11.3.2 11.3.2.x
oracle / communications_unified_inventory_management 7.4.1 7.4.1.x
oracle / retail_customer_management_and_segmentation_foundation 16.0 19.0.x
oracle / enterprise_data_quality 12.2.1.4.0 12.2.1.4.0.x
oracle / communications_element_manager 8.2.0 8.2.4.0.x
oracle / insurance_policy_administration 11.0 11.3.1.x
oracle / healthcare_data_repository 8.1.0 8.1.0.x
oracle / documaker 12.6.0 12.6.4.x
oracle / mysql_enterprise_monitor - 8.0.25.x
oracle / communications_session_report_manager 8.0.0 8.2.4.0.x
oracle / communications_brm_-_elastic_charging_engine 12.0.0.3 12.0.0.3.x
oracle / communications_session_route_manager 8.0.0 8.2.4.0.x
oracle / retail_merchandising_system 19.0.1 19.0.1.x
oracle / retail_integration_bus 14.1.3.2 14.1.3.2.x
oracle / retail_predictive_application_server 14.1.3 14.1.3.x
oracle / retail_financial_integration 14.1.3.2 14.1.3.2.x
oracle / retail_integration_bus 15.0.3.1 15.0.3.1.x
oracle / retail_financial_integration 15.0.3.1 15.0.3.1.x
oracle / retail_predictive_application_server 16.0.3 16.0.3.x
oracle / utilities_testing_accelerator 6.0.0.2.2 6.0.0.2.2.x
oracle / utilities_testing_accelerator 6.0.0.3.1 6.0.0.3.1.x
oracle / utilities_testing_accelerator 6.0.0.1.1 6.0.0.1.1.x
oracle / communications_cloud_native_core_policy 1.14.0 1.14.0.x
oracle / communications_unified_inventory_management 7.4.2 7.4.2.x
oracle / communications_cloud_native_core_unified_data_repository 1.14.0 1.14.0.x
oracle / communications_cloud_native_core_service_communication_proxy 1.14.0 1.14.0.x
oracle / communications_cloud_native_core_security_edge_protection_proxy 1.6.0 1.6.0.x
oracle / communications_cloud_native_core_binding_support_function 1.9.0 1.9.0.x
oracle / communications_unified_inventory_management 7.5.0 7.5.0.x
oracle / insurance_rules_palette 11.3.1 11.3.1.x
oracle / insurance_rules_palette 11.2.7 11.2.7.x
oracle / insurance_rules_palette 11.3.0 11.3.0.x
oracle / financial_services_analytical_applications_infrastructure 8.0.8 8.1.1.x
oracle / communications_diameter_intelligence_hub 8.0.0 8.1.0.x
oracle / communications_diameter_intelligence_hub 8.2.0 8.2.3.x
org.springframework / spring-core 5.2.0 5.2.15
org.springframework / spring-core 5.3.0 5.3.7