CVE-2021-39181

Опубликовано: 01 сент. 2021

Источник: nvd

CVSS3: 8.8

CVSS2: 6.5

EPSS Низкий

Описание

OpenOlat is a web-based learning management system (LMS). Prior to version 15.3.18, 15.5.3, and 16.0.0, using a prepared import XML file (e.g. a course) any class on the Java classpath can be instantiated, including spring AOP bean factories. This can be used to execute code arbitrary code by the attacker. The attack requires an OpenOlat user account with the authoring role. It can not be exploited by unregistered users. The problem is fixed in versions 15.3.18, 15.5.3, and 16.0.0. There are no known workarounds aside from upgrading.

Ссылки

https://github.com/OpenOLAT/OpenOLAT/commit/3f219ac457afde82e3be57bc614352ab92c05684
Patch
Third Party Advisory
https://github.com/OpenOLAT/OpenOLAT/security/advisories/GHSA-596v-3gwh-2m9w
Third Party Advisory
https://jira.openolat.org/browse/OO-5548
Permissions Required
https://github.com/OpenOLAT/OpenOLAT/commit/3f219ac457afde82e3be57bc614352ab92c05684
Patch
Third Party Advisory
https://github.com/OpenOLAT/OpenOLAT/security/advisories/GHSA-596v-3gwh-2m9w
Third Party Advisory
https://jira.openolat.org/browse/OO-5548
Permissions Required

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:frentix:openolat:*:*:*:*:*:*:*:*

Версия до 15.3.18 (исключая)

cpe:2.3:a:frentix:openolat:*:*:*:*:*:*:*:*

Версия от 15.5.0 (включая) до 15.5.3 (исключая)

EPSS

Процентиль: 67%

0.00546

Низкий

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-91