CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-1230

Pivotal Spring Batch Admin, all versions, does not contain cross site request forgery protection. A remote unauthenticated user could craft a malicious site that executes requests to Spring Batch Admin. This issue has not been patched because Spring Batch Admin has reached end of life.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.0%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

http://www.securityfocus.com/bid/103463
https://pivotal.io/security/cve-2018-1230
http://www.securityfocus.com/bid/103463
https://pivotal.io/security/cve-2018-1230

Products affected by CVE-2018-1230

Pivotal Software » Spring Batch Admin » Version: Any

cpe:2.3:a:pivotal_software:spring_batch_admin:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1230

Products

Pricing

Contact Us