SecuritySpace - CVE-2020-5410

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2020-5410

Description: Spring Cloud Config, versions 2.2.x prior to 2.2.3, versions 2.1.x prior to 2.1.9, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config- server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead to a directory traversal attack.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2020-5410

CVE ID:	CVE-2020-5410
Description:	Spring Cloud Config, versions 2.2.x prior to 2.2.3, versions 2.1.x prior to 2.1.9, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-config- server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead to a directory traversal attack.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2020-5410