Oval Definition:	oval:com.ubuntu.xenial:def:202053980000000
Revision Date: 2020-01-17 Version: 1 Title: CVE-2020-5398 on Ubuntu 16.04 LTS (xenial) - medium. Description: In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerable to a reflected file download (RFD) attack when it sets a "Content-Disposition" header in the response where the filename attribute is derived from user supplied input. Family: unix Class: vulnerability Status: Reference(s): CVE-2020-5398 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND libspring-java package in xenial is affected and may need fixing.
BACK