TROYANOSYVIRUS
Retour aux CVEs

CVE-2022-42889

CRITICAL
9.8

Description

Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation is "${prefix:name}", where "prefix" is used to locate an instance of org.apache.commons.text.lookup.StringLookup that performs the interpolation. Starting with version 1.5 and continuing through 1.9, the set of default Lookup instances included interpolators that could result in arbitrary code execution or contact with remote servers. These lookups are: - "script" - execute expressions using the JVM script execution engine (javax.script) - "dns" - resolve dns records - "url" - load values from urls, including from remote servers Applications using the interpolation defaults in the affected versions may be vulnerable to remote code execution or unintentional contact with remote servers if untrusted configuration values are used. Users are recommended to upgrade to Apache Commons Text 1.10.0, which disables the problematic interpolators by default.

Details CVE

Score CVSS v3.19.8
SeveriteCRITICAL
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie10/13/2022
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0

Produits affectes

apache:commons_textjuniper:jsa1500juniper:jsa3500juniper:jsa3800juniper:jsa5500juniper:jsa5800juniper:jsa7500juniper:jsa7800juniper:security_threat_response_managernetapp:bluexp

Faiblesses (CWE)

CWE-94

References

http://packetstormsecurity.com/files/171003/OX-App-Suite-Cross-Site-Scripting-Server-Side-Request-Forgery.html(security@apache.org)
http://packetstormsecurity.com/files/176650/Apache-Commons-Text-1.9-Remote-Code-Execution.html(security@apache.org)
http://seclists.org/fulldisclosure/2023/Feb/3(security@apache.org)
http://www.openwall.com/lists/oss-security/2022/10/13/4(security@apache.org)
http://www.openwall.com/lists/oss-security/2022/10/18/1(security@apache.org)
https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om(security@apache.org)
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0022(security@apache.org)
https://security.gentoo.org/glsa/202301-05(security@apache.org)
https://security.netapp.com/advisory/ntap-20221020-0004/(security@apache.org)
http://packetstormsecurity.com/files/171003/OX-App-Suite-Cross-Site-Scripting-Server-Side-Request-Forgery.html(af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.com/files/176650/Apache-Commons-Text-1.9-Remote-Code-Execution.html(af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2023/Feb/3(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2022/10/13/4(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2022/10/18/1(af854a3a-2127-422b-91ae-364da2661108)
https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om(af854a3a-2127-422b-91ae-364da2661108)
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0022(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/202301-05(af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20221020-0004/(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.