{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T21:56:46.642","vulnerabilities":[{"cve":{"id":"CVE-2018-1196","sourceIdentifier":"security_alert@emc.com","published":"2018-03-19T18:29:00.387","lastModified":"2024-11-21T03:59:22.490","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Spring Boot supports an embedded launch script that can be used to easily run the application as a systemd or init.d linux service. The script included with Spring Boot 1.5.9 and earlier and 2.0.0.M1 through 2.0.0.M7 is susceptible to a symlink attack which allows the \"run_user\" to overwrite and take ownership of any file on the same system. In order to instigate the attack, the application must be installed as a service and the \"run_user\" requires shell access to the server. Spring Boot application that are not installed as a service, or are not using the embedded launch script are not susceptible."},{"lang":"es","value":"Spring Boot soporta un script de inicio embebido que puede emplearse para ejecuta fácilmente la aplicación como servicio de linux systemd o init.d. El script incluido con Spring Boot 1.5.9 y anteriores y 2.0.0.M1 hasta 2.0.0.M7 es susceptible a un ataque symlink que permite que \"run_user\" sobrescriba y se haga dueño de cualquier archivo en el mismo sistema. Para instigar el ataque, la aplicación debe estar instalada como servicio y \"run_user\" requiere acceso shell al servidor. Las aplicaciones Spring Boot que no estén instaladas como servicio o que no estén usando el script de inicio embebido no son susceptibles."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-59"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:vmware:spring_boot:*:*:*:*:*:*:*:*","versionEndIncluding":"1.5.9","matchCriteriaId":"777814DB-A842-44AE-80AA-DAAB0F0C2DE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:vmware:spring_boot:2.0.0:milestone1:*:*:*:*:*:*","matchCriteriaId":"141F2C99-AD34-4003-81D4-689F3F1A53ED"},{"vulnerable":true,"criteria":"cpe:2.3:a:vmware:spring_boot:2.0.0:milestone2:*:*:*:*:*:*","matchCriteriaId":"D7929E66-FCA2-4D1B-B29F-55BF70AF70C2"},{"vulnerable":true,"criteria":"cpe:2.3:a:vmware:spring_boot:2.0.0:milestone3:*:*:*:*:*:*","matchCriteriaId":"E6B93CDA-E5D9-4955-910A-22B38779F23C"},{"vulnerable":true,"criteria":"cpe:2.3:a:vmware:spring_boot:2.0.0:milestone4:*:*:*:*:*:*","matchCriteriaId":"F324F68E-CF50-4F2E-90E4-3620CE05A944"},{"vulnerable":true,"criteria":"cpe:2.3:a:vmware:spring_boot:2.0.0:milestone5:*:*:*:*:*:*","matchCriteriaId":"C120785F-A827-4870-B33B-679367A9EB20"},{"vulnerable":true,"criteria":"cpe:2.3:a:vmware:spring_boot:2.0.0:milestone6:*:*:*:*:*:*","matchCriteriaId":"4826AF0C-1C00-4E13-88D0-2803A3BC01DC"},{"vulnerable":true,"criteria":"cpe:2.3:a:vmware:spring_boot:2.0.0:milestone7:*:*:*:*:*:*","matchCriteriaId":"6F6E42D8-3B40-4EC5-ACA4-3055F64A2AD4"}]}]}],"references":[{"url":"https://pivotal.io/security/cve-2018-1196","source":"security_alert@emc.com","tags":["Vendor Advisory"]},{"url":"https://pivotal.io/security/cve-2018-1196","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}