module
Spring Cloud Config Server Directory Traversal
| Disclosed |
|---|
| Apr 17, 2019 |
Disclosed
Apr 17, 2019
Description
This module exploits an unauthenticated directory traversal vulnerability
which exists in Spring Cloud Config versions 2.1.x prior to 2.1.2,
versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6. Spring
Cloud Config listens by default on port 8888.
which exists in Spring Cloud Config versions 2.1.x prior to 2.1.2,
versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6. Spring
Cloud Config listens by default on port 8888.
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.