Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-7657

Опубликовано: 26 июн. 2018
Источник: nvd
CVSS3: 9.8
CVSS2: 7.5
EPSS Низкий

Описание

In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations), and 9.4.x (non-default configuration with RFC2616 compliance enabled), transfer-encoding chunks are handled poorly. The chunk length parsing was vulnerable to an integer overflow. Thus a large chunk size could be interpreted as a smaller chunk size and content sent as chunk body could be interpreted as a pipelined request. If Jetty was deployed behind an intermediary that imposed some authorization and that intermediary allowed arbitrarily large chunks to be passed on unchanged, then this flaw could be used to bypass the authorization imposed by the intermediary as the fake pipelined request would not be interpreted by the intermediary as a request.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*
Версия до 9.2.26 (включая)
cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*
Версия от 9.3.0 (включая) до 9.3.24 (исключая)
cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*
Версия от 9.4.0 (включая) до 9.4.11 (исключая)
Конфигурация 2
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Конфигурация 3

Одно из

cpe:2.3:a:netapp:e-series_santricity_management:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*
Версия от 11.0 (включая) до 11.50.1 (включая)
cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:element_software_management_node:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:hci_storage_nodes:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_system_manager:3.x:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_unified_manager:*:*:*:*:*:*:*:*
Версия до 5.2.4 (исключая)
cpe:2.3:a:netapp:santricity_cloud_connector:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:snap_creator_framework:*:*:*:*:*:*:*:*
Версия до 4.3.3 (исключая)
cpe:2.3:a:netapp:snapcenter:*:*:*:*:*:*:*:*
Версия до 4.1p3 (исключая)
cpe:2.3:a:netapp:snapmanager:*:*:*:*:*:oracle:*:*
Версия до 3.4.2 (исключая)
cpe:2.3:a:netapp:snapmanager:*:*:*:*:*:sap:*:*
Версия до 3.4.2 (исключая)
Конфигурация 4

Одновременно

cpe:2.3:a:hp:xp_p9000_command_view:*:*:*:*:advanced:*:*:*
Версия от 8.4.0-00 (включая) до 8.6.2-00 (исключая)
cpe:2.3:h:hp:xp_p9000:-:*:*:*:*:*:*:*
Конфигурация 5

Одно из

cpe:2.3:a:oracle:rest_data_services:11.2.0.4:*:*:*:-:*:*:*
cpe:2.3:a:oracle:rest_data_services:12.1.0.2:*:*:*:-:*:*:*
cpe:2.3:a:oracle:rest_data_services:12.2.0.1:*:*:*:-:*:*:*
cpe:2.3:a:oracle:rest_data_services:18c:*:*:*:-:*:*:*
cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_xstore_point_of_service:15.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_xstore_point_of_service:16.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:retail_xstore_point_of_service:17.0:*:*:*:*:*:*:*

EPSS

Процентиль: 88%
0.03704
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-444
CWE-190

Связанные уязвимости

ubuntu логотип

CVE-2017-7657

CVSS3: 9.8
ubuntu
больше 7 лет назад

In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations), and 9.4.x (non-default configuration with RFC2616 compliance enabled), transfer-encoding chunks are handled poorly. The chunk length parsing was vulnerable to an integer overflow. Thus a large chunk size could be interpreted as a smaller chunk size and content sent as chunk body could be interpreted as a pipelined request. If Jetty was deployed behind an intermediary that imposed some authorization and that intermediary allowed arbitrarily large chunks to be passed on unchanged, then this flaw could be used to bypass the authorization imposed by the intermediary as the fake pipelined request would not be interpreted by the intermediary as a request.

redhat логотип

CVE-2017-7657

CVSS3: 9.8
redhat
больше 7 лет назад

In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations), and 9.4.x (non-default configuration with RFC2616 compliance enabled), transfer-encoding chunks are handled poorly. The chunk length parsing was vulnerable to an integer overflow. Thus a large chunk size could be interpreted as a smaller chunk size and content sent as chunk body could be interpreted as a pipelined request. If Jetty was deployed behind an intermediary that imposed some authorization and that intermediary allowed arbitrarily large chunks to be passed on unchanged, then this flaw could be used to bypass the authorization imposed by the intermediary as the fake pipelined request would not be interpreted by the intermediary as a request.

debian логотип

CVE-2017-7657

CVSS3: 9.8
debian
больше 7 лет назад

In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations) ...

github логотип

GHSA-vgg8-72f2-qm23

CVSS3: 9.8
github
больше 7 лет назад

Critical severity vulnerability that affects org.eclipse.jetty:jetty-server

fstec логотип

BDU:2021-04177

CVSS3: 9.8
fstec
больше 7 лет назад

Уязвимость контейнера сервлетов Eclipse Jetty, связанная с непоследовательной интерпретацией http-запросов, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации

EPSS

Процентиль: 88%
0.03704
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-444
CWE-190