Описание
High severity vulnerability that affects org.apache.syncope:syncope-core
An administrator with report and template entitlements in Apache Syncope 1.2.x before 1.2.11 and 2.0.x before 2.0.8 can use XSL Transformations (XSLT) to perform malicious operations, including but not limited to file read, file write, and code execution.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2018-1321
- https://github.com/apache/syncope/commit/726231fbf7b817bd2a9467171dcb1c0087c75bc
- https://github.com/apache/syncope/commit/ad31479c1c543ac7d26b8c882aa14f6c00c1fd0
- https://github.com/advisories/GHSA-xgc9-9w4v-h33h
- https://www.exploit-db.com/exploits/45400
- http://syncope.apache.org/security.html#CVE-2018-1321:_Remote_code_execution_by_administrators_with_report_and_template_entitlements
- http://www.securityfocus.com/bid/103508
Пакеты
org.apache.syncope:syncope-core
< 1.2.11
1.2.11
org.apache.syncope:syncope-core
>= 2.0.0, < 2.0.8
2.0.8
Связанные уязвимости
An administrator with report and template entitlements in Apache Syncope 1.2.x before 1.2.11, 2.0.x before 2.0.8, and unsupported releases 1.0.x and 1.1.x which may be also affected, can use XSL Transformations (XSLT) to perform malicious operations, including but not limited to file read, file write, and code execution.
Уязвимость реализации технологии XSLT (eXtensible Stylesheet Language Transformations) системы для управления цифровыми идентификаторами Apache Syncope, позволяющая нарушителю осуществить чтение файла, запись файла или выполнить произвольный код