CVE-2016-9878

Priority
Description
An issue was discovered in Pivotal Spring Framework before 3.2.18, 4.2.x
before 4.2.9, and 4.3.x before 4.3.5. Paths provided to the ResourceServlet
were not properly sanitized and as a result exposed to directory traversal
attacks.
Ubuntu-Description
It was discovered that Spring Framework incorrectly handled path inputs. An
attacker could possibly use this issue to read arbitrary files.
Notes
More Information

Updated: 2020-09-09 20:56:40 UTC (commit b67d7d8b03f173f825cd706df5bd078bca500b0e)