CVE-2020-5410: VMware Tanzu Spring Cloud Config Directory Traversal Vulnerability
First published: Fri May 15 2020(Updated: )
A flaw was found in spring-cloud-config in versions prior to 2.1.9 and 2.2.3. Applications are allowed to serve arbitrary configuration files through the spring-cloud-config-server module allowing an attacker to send a request using a specially crafted URL to create a directory traversal attack. The highest threat from this vulnerability is to data confidentiality.
Credit: security@pivotal.io security@pivotal.io
| Affected Software | Affected Version | How to fix |
|---|---|---|
| >=2.1.0<2.1.9 | ||
| >=2.2.0<2.2.3 | ||
| redhat/spring-cloud-config | <2.2.3 | 2.2.3 |
| redhat/spring-cloud-config | <2.1.9 | 2.1.9 |
| VMware Tanzu Spring Cloud Configuration (Config) Server | ||
| Vmware Spring Cloud Config | >=2.1.0<2.1.9 | |
| Vmware Spring Cloud Config | >=2.2.0<2.2.3 |
Remedy
Users of vulnerable versions or older, unsupported versions of spring-cloud-config-server should upgrade to a patched version. Spring-cloud-config-server should only be accessible on internal networks.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2020-5410 https://nvd.nist.gov/vuln/detail/CVE-2020-5410
- https://bugzilla.redhat.com/show_bug.cgi?id=1845626
- https://access.redhat.com/errata/RHSA-2020:5568
- https://access.redhat.com/errata/RHSA-2021:3140
- https://access.redhat.com/security/cve/cve-2020-5410
- https://tanzu.vmware.com/security/cve-2020-5410
- https://nvd.nist.gov/vuln/detail/CVE-2020-5410
Frequently Asked Questions
What is CVE-2020-5410?
CVE-2020-5410 is a directory traversal vulnerability found in VMware Tanzu Spring Cloud Config.
How does CVE-2020-5410 affect VMware Tanzu Spring Cloud Config?
CVE-2020-5410 allows an attacker to create a directory traversal attack by sending a specially crafted URL request to the spring-cloud-config-server module, allowing them to serve arbitrary configuration files.
What is the severity of CVE-2020-5410?
CVE-2020-5410 has a severity value of 7.5 (High).
Which versions of VMware Tanzu Spring Cloud Config are affected by CVE-2020-5410?
Versions prior to 2.1.9 and 2.2.3 of VMware Tanzu Spring Cloud Config are affected by CVE-2020-5410.
How can I fix CVE-2020-5410?
To fix CVE-2020-5410, update your VMware Tanzu Spring Cloud Config to version 2.1.9 or 2.2.3.
- collector/redhat-cve
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/severity
- agent/title
- agent/remedy
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-5410
- agent/software-canonical-lookup
- agent/description
- agent/weakness
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/references
- agent/author
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/event
- collector/nvd-cve
- source/NVD
- agent/last-modified-date
- agent/trending
- vendor/vmware
- package-manager/redhat
- vendor/vmware tanzu
- canonical/vmware tanzu spring cloud configuration (config) server
- canonical/vmware spring cloud config
- version/vmware spring cloud config/2.1.0
- version/vmware spring cloud config/2.2.0