Spring Framework CVE-2018-11040 Multiple Information Disclosure Vulnerabilities

Bugtraq ID: 107986
Class: Design Error
CVE: CVE-2018-11040
Remote: Yes
Local: No
Published: Jun 25 2018 12:00AM
Updated: Jun 25 2018 12:00AM
Credit: The vendor reported this issue.
Vulnerable: Pivotal Spring Framework 5.0.10
Pivotal Spring Framework 5.0.6
Pivotal Spring Framework 5.0.5
Pivotal Spring Framework 5.0.4
Pivotal Spring Framework 5.0.3
Pivotal Spring Framework 5.0.2
Pivotal Spring Framework 5.0.1
Pivotal Spring Framework 5.0
Pivotal Spring Framework 4.3.17
Pivotal Spring Framework 4.3.16
Pivotal Spring Framework 4.3.15
Pivotal Spring Framework 4.3.14
Pivotal Spring Framework 4.3
Pivotal Spring Framework 3.2.15
Pivotal Spring Framework 3.2.14
Pivotal Spring Framework 3.2.13
Pivotal Spring Framework 3.2.12
Pivotal Spring Framework 3.2.11
Pivotal Spring Framework 3.2.10
Pivotal Spring Framework 3.2.9
Pivotal Spring Framework 3.2.7
Pivotal Spring Framework 3.2.5
Pivotal Spring Framework 3.2.4
Pivotal Spring Framework 3.2
Pivotal Spring Framework 3.0.5
Pivotal Spring Framework 3.0.4
Pivotal Spring Framework 3.2.8
Pivotal Spring Framework 3.2.6
Pivotal Spring Framework 3.2.3
Pivotal Spring Framework 3.2.2
Pivotal Spring Framework 3.2.1
Pivotal Spring Framework 3.1.4
Pivotal Spring Framework 3.1.3
Pivotal Spring Framework 3.1.2
Pivotal Spring Framework 3.1.1
Pivotal Spring Framework 3.1.0
Pivotal Spring Framework 3.0.7
Pivotal Spring Framework 3.0.6
Oracle Weblogic Server 10.3.6 0
Oracle Weblogic Server 12.2.1.3
Oracle Weblogic Server 12.1.3.0
Oracle Utilities Network Management System 1.12.0.3
Oracle Retail Integration Bus 14.1.2
Oracle Retail Financial Integration 16.0
Oracle Retail Financial Integration 15.0
Oracle Retail Financial Integration 14.1
Oracle Retail Financial Integration 14.0
Oracle Retail Financial Integration 13.2
Oracle Retail Customer Insights 16.0
Oracle Retail Customer Insights 15.0
Oracle Retail Assortment Planning 16.0
Oracle Retail Assortment Planning 15.0
Oracle Retail Assortment Planning 14.1
Oracle MySQL Enterprise Monitor 8.0.14
Oracle MySQL Enterprise Monitor 8.0.13
Oracle MySQL Enterprise Monitor 8.0.2.8191
Oracle MySQL Enterprise Monitor 8.0.0.8131
Oracle MySQL Enterprise Monitor 4.0.6.5281
Oracle MySQL Enterprise Monitor 4.0.4.5235
Oracle MySQL Enterprise Monitor 4.0.2.5168
Oracle MySQL Enterprise Monitor 4.0.0.5135
Oracle MySQL Enterprise Monitor 3.4.9.4237
Oracle MySQL Enterprise Monitor 3.4.7.4297
Oracle MySQL Enterprise Monitor 3.4.5.4248
Oracle MySQL Enterprise Monitor 3.4.4.4226
Oracle MySQL Enterprise Monitor 3.4.2.4181
Oracle MySQL Enterprise Monitor 3.4.1
Oracle MySQL Enterprise Monitor 3.4.0
Oracle MICROS Lucas 2.9.5
Oracle Insurance Rules Palette 10.2
Oracle Insurance Rules Palette 10.0
Oracle Insurance Calculation Engine 10.2
Oracle Healthcare Master Person Index 4.0
Oracle Healthcare Master Person Index 3.0
Oracle FLEXCUBE Private Banking 2.2 1
Oracle FLEXCUBE Private Banking 2.0.0.0
Oracle FLEXCUBE Private Banking 12.1.0.0
Oracle FLEXCUBE Private Banking 12.0.3.0
Oracle FLEXCUBE Private Banking 12.0.1.0
Oracle Enterprise Manager Ops Center 12.3.3
Oracle Enterprise Manager for MySQL Database 13.2.3.0.0
Oracle Enterprise Manager for MySQL Database 13.2.2.0.0
Oracle Enterprise Manager for MySQL Database 13.2.1.0.0
Oracle Enterprise Manager Base Platform 13.3.0.0.0
Oracle Enterprise Manager Base Platform 13.2.0.0.0
Oracle Enterprise Manager Base Platform 12.1.0.5.0
Oracle Endeca Information Discovery Integrator 3.2
Oracle Endeca Information Discovery Integrator 3.1
Oracle Communications Services Gatekeeper 6.0
Oracle Communications Services Gatekeeper 5.1
Oracle Communications Performance Intelligence Center (PIC) Software 10.2
Oracle Communications Performance Intelligence Center (PIC) Software 10.1.5.1
Oracle Communications Diameter Signaling Router 7.1
Oracle Communications Diameter Signaling Router 6.0.2
Oracle Communications Diameter Signaling Router 6.0
Oracle Communications Diameter Signaling Router 5.1
Oracle Communications Diameter Signaling Router 4.1.6
Oracle Communications Diameter Signaling Router 4.1
Oracle Communications Diameter Signaling Router 8.0
Oracle Communications Diameter Signaling Router 7.0
Oracle Communications Diameter Signaling Router 5.0
Oracle Communications Diameter Signaling Router 4.0
Oracle Communications Diameter Signaling Router 3.0
Oracle Application Testing Suite 13.3.0.1
Oracle Application Testing Suite 13.2.0.1
Oracle Application Testing Suite 13.1.0.1
Oracle Application Testing Suite 12.5.0.3
Not Vulnerable: Pivotal Spring Framework 5.0.7
Pivotal Spring Framework 4.3.18
Oracle Hospitality Guest Access 4.2.1
Oracle Hospitality Guest Access 4.2
Oracle Communications Services Gatekeeper 6.1.0.4.0
Oracle Communications Performance Intelligence Center (PIC) Software 10.2.1
Oracle Communications Diameter Signaling Router 8.3


 

Privacy Statement
Copyright 2010, SecurityFocus