High severity8.8NVD Advisory· Published Mar 21, 2018· Updated Jun 17, 2026
CVE-2018-1230
CVE-2018-1230
Description
Pivotal Spring Batch Admin, all versions, does not contain cross site request forgery protection. A remote unauthenticated user could craft a malicious site that executes requests to Spring Batch Admin. This issue has not been patched because Spring Batch Admin has reached end of life.
Affected products
2- Range: all versions
- Spring by Pivotal/Spring Batch Adminv5Range: All
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/103463nvdThird Party AdvisoryVDB Entry
- pivotal.io/security/cve-2018-1230nvdMitigationVendor Advisory
News mentions
0No linked articles in our index yet.