CVE-2017-18349

Опубликовано: 23 окт. 2018

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Критический

Описание

parseObject in Fastjson before 1.2.25, as used in FastjsonEngine in Pippo 1.11.0 and other products, allows remote attackers to execute arbitrary code via a crafted JSON request, as demonstrated by a crafted rmi:// URI in the dataSourceName field of HTTP POST data to the Pippo /json URI, which is mishandled in AjaxApplication.java.

Ссылки

https://fortiguard.com/encyclopedia/ips/44059
Mitigation
Third Party Advisory
https://github.com/alibaba/fastjson/wiki/security_update_20170315
Mitigation
Third Party Advisory
https://github.com/pippo-java/pippo/issues/466
Exploit
Third Party Advisory
https://fortiguard.com/encyclopedia/ips/44059
Mitigation
Third Party Advisory
https://github.com/alibaba/fastjson/wiki/security_update_20170315
Mitigation
Third Party Advisory
https://github.com/pippo-java/pippo/issues/466
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:alibaba:fastjson:*:*:*:*:*:*:*:*

Версия до 1.2.25 (исключая)

cpe:2.3:a:pippo:pippo:1.11.0:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.92079

Критический

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-xjrr-xv9m-4pw5