CVE-2018-1257: High severity VMware Spring Framework vulnerability

Published May 11, 2018
·
Updated

A flaw was found in Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a regular expression, denial of service attack.

References: https://pivotal.io/security/cve-2018-1257

Other sources

Pivotal Spring Framework is vulnerable to a denial of service. By sending a specially-crafted message, a remote attacker could exploit this vulnerability to perform a regular expression denial of service attack.

IBM

Affected Software

76 affected componentsFixes available
redhat/spring-framework<5.0.6
5.0.6
redhat/spring-framework<4.3.17
4.3.17
maven/org.springframework:spring-core<4.3.17
4.3.17
maven/org.springframework:spring-core>=5.0.0<5.0.6
5.0.6
VMware Spring Framework<4.3.17
VMware Spring Framework>=5.0.0<5.0.6
redhat Openshift
Oracle Agile Product Lifecycle Management=9.3.3
Oracle Agile Product Lifecycle Management=9.3.4
Oracle Agile Product Lifecycle Management=9.3.5
Oracle Agile Product Lifecycle Management=9.3.6
Oracle Application Testing Suite=12.5.0.3
Oracle Application Testing Suite=13.1.0.1
Oracle Application Testing Suite=13.2.0.1
Oracle Application Testing Suite=13.3.0.1
Oracle Big Data Discovery=1.6.0
Oracle Communications Converged Application Server<7.0.0.1
Oracle Communications Diameter Signaling Router<8.3
Oracle Communications Performance Intelligence Center<10.2.1
Oracle Communications Services Gatekeeper<6.1.0.4.0
Oracle Communications Unified Inventory Management=7.3.2
Oracle Communications Unified Inventory Management=7.3.4
Oracle Communications Unified Inventory Management=7.3.5
Oracle Communications Unified Inventory Management=7.4.0
Oracle Endeca Information Discovery Integrator=3.1.0
Oracle Endeca Information Discovery Integrator=3.2.0
Oracle Enterprise Manager Base Platform=12.1.0.5.0
Oracle Enterprise Manager Base Platform=13.2.0.0.0
Oracle Enterprise Manager Base Platform=13.3.0.0.0
Oracle Enterprise Manager For Mysql Database=13.2
Oracle Enterprise Manager Ops Center=12.3.3
Oracle FLEXCUBE Private Banking=2.0.0.0
Oracle FLEXCUBE Private Banking=2.2.0.1
Oracle FLEXCUBE Private Banking=12.0.1.0
Oracle FLEXCUBE Private Banking=12.0.3.0
Oracle FLEXCUBE Private Banking=12.1.0.0
Oracle Goldengate For Big Data=12.2.0.1
Oracle Goldengate For Big Data=12.3.1.1
Oracle Goldengate For Big Data=12.3.2.1
Oracle Health Sciences Information Manager=3.0
Oracle Healthcare Master Person Index=3.0
Oracle Healthcare Master Person Index=4.0
Oracle Hospitality Guest Access=4.2.0
Oracle Hospitality Guest Access=4.2.1
Oracle Insurance Calculation Engine=10.1.1
Oracle Insurance Calculation Engine=10.2
Oracle Insurance Calculation Engine=10.2.1
Oracle Insurance Rules Palette=10.0
Oracle Insurance Rules Palette=10.1
Oracle Insurance Rules Palette=10.2
Oracle Insurance Rules Palette=11.0
Oracle Insurance Rules Palette=11.1
Oracle Primavera Gateway=15.2
Oracle Primavera Gateway=16.2
Oracle Primavera Gateway=17.12
Oracle Retail Customer Insights=15.0
Oracle Retail Customer Insights=16.0
Oracle Retail Open Commerce Platform=5.3.0
Oracle Retail Open Commerce Platform=6.0.0
Oracle Retail Open Commerce Platform=6.0.1
Oracle Retail Order Broker=5.1
Oracle Retail Order Broker=5.2
Oracle Retail Order Broker=15.0
Oracle Retail Order Broker=16.0
Oracle Retail Predictive Application Server=14.0
Oracle Retail Predictive Application Server=14.1
Oracle Retail Predictive Application Server=15.0
Oracle Retail Predictive Application Server=16.0
Oracle Service Architecture Leveraging Tuxedo=12.1.3.0.0
Oracle Service Architecture Leveraging Tuxedo=12.2.2.0.0
Oracle Tape Library Acsls=8.4
Oracle Utilities Network Management System=1.12.0.3
Oracle WebLogic Server=10.3.6.0.0
Oracle WebLogic Server=12.1.3.0.0
Oracle WebLogic Server=12.2.1.3.0
IBM GDE<=3.0.0.2

Remediation

Patch Available

http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

Patch Available

https://www.oracle.com/security-alerts/cpujan2020.html

Patch Available

https://www.oracle.com/security-alerts/cpujul2020.html

Patch Available

https://www.oracle.com/security-alerts/cpuoct2021.html

Patch Available

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

Patch Available

https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

Patch Available

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

Event History

May 11, 2018
CVE Published
via MITRE·08:00 PM
Data Sourced
via MITRE·08:00 PM
DescriptionWeakness
May 15, 2018
Data Sourced
via Red Hat·10:13 PM
DescriptionSeverityAffected Software
Oct 17, 2018
Advisory Published
via GitHub·08:02 PM

Parent advisories

This vulnerability appears in the following advisories.

Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2018-1257?

CVE-2018-1257 is classified as a Medium severity vulnerability due to its potential to cause denial of service.

2

How do I fix CVE-2018-1257?

To resolve CVE-2018-1257, upgrade your Spring Framework versions to 5.0.6 or 4.3.17 or later.

3

What is the impact of exploiting CVE-2018-1257?

Exploiting CVE-2018-1257 can lead to a denial of service condition on affected applications.

4

Which versions are affected by CVE-2018-1257?

CVE-2018-1257 affects Spring Framework versions 5.0.x prior to 5.0.6 and 4.3.x prior to 4.3.17.

5

Is there a workaround for CVE-2018-1257?

There are no specific workarounds for CVE-2018-1257; upgrading to a patched version is recommended.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203