CVE-2018-1000632

Опубликовано: 20 авг. 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

dom4j version prior to version 2.1.1 contains a CWE-91: XML Injection vulnerability in Class: Element. Methods: addElement, addAttribute that can result in an attacker tampering with XML documents through XML injection. This attack appear to be exploitable via an attacker specifying attributes or elements in the XML document. This vulnerability appears to have been fixed in 2.1.1 or later.

Ссылки

https://access.redhat.com/errata/RHSA-2019:0362
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0364
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0365
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0380
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1159
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1160
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1161
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1162
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3172
Third Party Advisory
https://github.com/dom4j/dom4j/commit/e598eb43d418744c4dbf62f647dd2381c9ce9387
Patch
Third Party Advisory
https://github.com/dom4j/dom4j/issues/48
Third Party Advisory
https://ihacktoprotect.com/post/dom4j-xml-injection/
Exploit
Third Party Advisory
https://lists.apache.org/thread.html/00571f362a7a2470fba50a31282c65637c40d2e21ebe6ee535a4ed74%40%3Ccommits.maven.apache.org%3E
https://lists.apache.org/thread.html/4a77652531d62299a30815cf5f233af183425db8e3c9a824a814e768%40%3Cdev.maven.apache.org%3E
https://lists.apache.org/thread.html/5a020ecaa3c701f408f612f7ba2ee37a021644c4a39da2079ed3ddbc%40%3Ccommits.maven.apache.org%3E
https://lists.apache.org/thread.html/708d94141126eac03011144a971a6411fcac16d9c248d1d535a39451%40%3Csolr-user.lucene.apache.org%3E
https://lists.apache.org/thread.html/7e9e78f0e4288fac6591992836d2a80d4df19161e54bd71ab4b8e458%40%3Cdev.maven.apache.org%3E
https://lists.apache.org/thread.html/7f6e120e6ed473f4e00dde4c398fc6698eb383bd7857d20513e989ce%40%3Cdev.maven.apache.org%3E
https://lists.apache.org/thread.html/9d4c1af6f702c3d6d6f229de57112ddccac8ce44446a01b7937ab9e0%40%3Ccommits.maven.apache.org%3E
https://lists.apache.org/thread.html/d7d960b2778e35ec9b4d40c8efd468c7ce7163bcf6489b633491c89f%40%3Cdev.maven.apache.org%3E

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:dom4j_project:dom4j:*:*:*:*:*:*:*:*

Версия от 2.0.0 (включая) до 2.0.3 (исключая)

cpe:2.3:a:dom4j_project:dom4j:*:*:*:*:*:*:*:*

Версия от 2.1.0 (включая) до 2.1.1 (исключая)

Конфигурация 2

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:oracle:flexcube_investor_servicing:12.0.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:flexcube_investor_servicing:12.1.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:flexcube_investor_servicing:12.3.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:flexcube_investor_servicing:12.4.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:flexcube_investor_servicing:14.0.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*

Версия от 16.1.0.0 (включая) до 16.2.20.1 (включая)

cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*

Версия от 17.1.0.0 (включая) до 17.12.17.1 (включая)

cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*

Версия от 18.1.0.0 (включая) до 18.8.19.0 (включая)

cpe:2.3:a:oracle:primavera_p6_enterprise_project_portfolio_management:*:*:*:*:*:*:*:*

Версия от 19.12.0.0 (включая) до 19.12.6.0 (включая)

cpe:2.3:a:oracle:rapid_planning:12.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:rapid_planning:12.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_integration_bus:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_integration_bus:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:utilities_framework:*:*:*:*:*:*:*:*

Версия от 4.3.0.2.0 (включая) до 4.3.0.6.0 (включая)

cpe:2.3:a:oracle:utilities_framework:2.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:utilities_framework:4.2.0.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:utilities_framework:4.2.0.3.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:utilities_framework:4.4.0.0.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:utilities_framework:4.4.0.2:*:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:a:redhat:satellite:6.6:*:*:*:*:*:*:*

cpe:2.3:a:redhat:satellite_capsule:6.6:*:*:*:*:*:*:*

Конфигурация 5

Одновременно

Одно из

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.1.0:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

Конфигурация 6

Одновременно

Одно из

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*

Конфигурация 7

Одно из

cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:snap_creator_framework:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:oracle:*:*

cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*

EPSS

Процентиль: 81%

0.01611

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-91

Связанные уязвимости

CVE-2018-1000632

CVSS3: 7.5

ubuntu

больше 7 лет назад

CVE-2018-1000632

CVSS3: 5.3

redhat

больше 7 лет назад

CVE-2018-1000632

CVSS3: 7.5

debian

больше 7 лет назад

dom4j version prior to version 2.1.1 contains a CWE-91: XML Injection ...

openSUSE-SU-2018:3998-1

suse-cvrf

около 7 лет назад

Security update for dom4j

openSUSE-SU-2018:2931-1

suse-cvrf

больше 7 лет назад

Security update for dom4j

EPSS

Процентиль: 81%

0.01611

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-91