Vulnerability Name: CVE-2020-5421 (CCN-188530) Assigned: 2020-09-17 Published: 2020-09-17 Updated: 2023-03-01 Summary: VMware Tanzu Spring Framework could allow a remote attacker to bypass security restrictions, caused by improper input validation. By using a specially-crafted jsessionid path parameter, an attacker could exploit this vulnerability to bypass RFD Protection. CVSS v3 Severity: 6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:N 5.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:N/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): HighPrivileges Required (PR): LowUser Interaction (UI): RequiredScope: Scope (S): ChangedImpact Metrics: Confidentiality (C): LowIntegrity (I): HighAvailibility (A): None
5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): LowAvailibility (A): None
CVSS v2 Severity: 3.6 Low (CVSS v2 Vector: AV:N/AC:H/Au:S/C:P/I:P/A:N Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): HighAuthentication (Au): Single_InstanceImpact Metrics: Confidentiality (C): PartialIntegrity (I): PartialAvailibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAthentication (Au): NoneImpact Metrics: Confidentiality (C): NoneIntegrity (I): PartialAvailibility (A): None
Vulnerability Consequences: Bypass Security References: Source: MITRECVE-2020-5421 vamware-cve20205421-sec-bypass(188530) security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io security@pivotal.io CVE-2020-5421: RFD Protection Bypass via jsessionid security@pivotal.io Spring Framework vulnerabilities affect IBM Watson Text to Speech and Speech to Text (IBM Watson Speech Services for Cloud Pak for Data 1.2) A vulnerability in Spring Framework affects IBM Tivoli Application Dependency Discovery Manager (CVE-2020-5421). Rational Test Control Panel affected by Spring Framework vulnerability Spring Framework as used by IBM QRadar SIEM is vulnerable to improper input validation (CVE-2020-5421) IBM Data Risk Manager is affected by multiple vulnerabilities IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Spring IBM Security Guardium is affected by a Spring Framework vulnerability Security Bypass Vulnerability in Spring Framework Affects IBM Control Center (CVE-2020-5421) IBM Security Risk Manager on CP4S is affected by multiple vulnerabilities IBM Data Risk Manager is affected by multiple vulnerabilities including a remote code execution in Spring Framework (CVE-2022-22965) IBM Sterling B2B Integrator vulnerable to multiple vulnerabilities due to Spring Framework Vulnerabilities in Spring Framework affect IBM Cloud Pak System (CVE-2022-22965, CVE-2020-5421) security@pivotal.io Oracle Critical Patch Update Advisory - April 2021 security@pivotal.io Oracle Critical Patch Update Advisory - April 2022 security@pivotal.io Oracle Critical Patch Update Advisory - January 2021 security@pivotal.io Oracle Critical Patch Update Advisory - January 2022 security@pivotal.io Oracle Critical Patch Update Advisory - July 2021 security@pivotal.io Vulnerable Configuration: Configuration CCN 1 :cpe:/a:pivotal_software:spring_framework:5.2.8:*:*:*:*:*:*:* AND cpe:/a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_order_broker_cloud_service:15.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_order_broker_cloud_service:16.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_predictive_application_server:14.1:*:*:*:*:*:*:* OR cpe:/a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:flexcube_private_banking:12.0:*:*:*:*:*:*:* OR cpe:/a:oracle:flexcube_private_banking:12.1:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_invoice_matching:14.0:*:*:*:*:*:*:* OR cpe:/a:oracle:retail_invoice_matching:14.1:*:*:*:*:*:*:* OR cpe:/a:oracle:fusion_middleware:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:oracle:enterprise_data_quality:12.2.1.3.0:*:*:*:*:*:*:* OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.0:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_b2b_integrator:6.0.0.0:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_unified_inventory_management:7.3.4:*:*:*:*:*:*:* OR cpe:/a:oracle:communications_unified_inventory_management:7.3.5:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_discovery:2.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.3.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.1.1:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.1:*:*:*:*:*:*:* OR cpe:/a:ibm:data_risk_manager:2.0.6:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.0:-:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.2:*:*:*:*:*:*:* OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.3:p5:*:*:*:*:*:* OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.1:patch1:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.3.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.3.1:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.3.2:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_b2b_integrator:6.1.0.0:*:*:*:standard:*:*:* OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.2:p1:*:*:*:*:*:* OR cpe:/a:ibm:control_center:6.2.0.0:*:*:*:*:*:*:* OR cpe:/a:ibm:watson_discovery:2.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_system:2.3.3.3:*:*:*:*:*:*:* OR cpe:/a:ibm:security_guardium:11.3:*:*:*:*:*:*:* OR cpe:/a:ibm:cloud_pak_for_security:1.7.2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:sterling_b2b_integrator:6.0.3.5:*:*:*:standard:*:*:* BACK
pivotal_software spring framework 5.2.8
oracle weblogic server 10.3.6.0.0
oracle weblogic server 12.1.3.0.0
oracle retail order broker cloud service 15.0
oracle retail order broker cloud service 16.0
oracle retail predictive application server 14.1
oracle weblogic server 12.2.1.3.0
oracle flexcube private banking 12.0
oracle flexcube private banking 12.1
oracle retail invoice matching 14.0
oracle retail invoice matching 14.1
oracle fusion middleware 12.2.1.3.0
oracle enterprise data quality 12.2.1.3.0
ibm qradar security information and event manager 7.3.0
ibm sterling b2b integrator 6.0.0.0
oracle communications unified inventory management 7.3.4
oracle communications unified inventory management 7.3.5
ibm cloud pak system 2.3.0.1
ibm watson discovery 2.0.0
ibm tivoli application dependency discovery manager 7.3.0.0
ibm security guardium 11.0
ibm cloud pak system 2.3.1.1
ibm security guardium 11.1
ibm data risk manager 2.0.6
ibm cloud pak system 2.3.2.0
ibm qradar security information and event manager 7.4.0
ibm security guardium 11.2
ibm qradar security information and event manager 7.3.3 p5
ibm qradar security information and event manager 7.4.1 patch1
ibm cloud pak system 2.3.3.0
ibm cloud pak system 2.3.3.1
ibm cloud pak system 2.3.3.2
ibm sterling b2b integrator 6.1.0.0
ibm qradar security information and event manager 7.4.2 p1
ibm control center 6.2.0.0
ibm watson discovery 2.2.0
ibm cloud pak system 2.3.3.3
ibm security guardium 11.3
ibm cloud pak for security 1.7.2.0
ibm sterling b2b integrator 6.0.3.5
Denotes that component is vulnerable