CVE-2018-1000889

Published: Dic 28, 2018 Last Modified: Nov 21, 2024 EU-VD ID: EUVD-2018-2064 Aliases: GSD-2018-1000889

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,8

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: required

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: high

MEDIUM 6,8

Source: [email protected]

Access Vector: network

Access Complexity: medium

Authentication: none

Confidentiality: partial

Integrity: partial

Availability: partial

Description

AI Translation Available

Logisim Evolution version 2.14.3 and earlier contains an XML External Entity (XXE) vulnerability in Circuit file loading functionality (loadXmlFrom in src/com/cburch/logisim/file/XmlReader.java) that can result in information leak, possible RCE depending on system configuration. This attack appears to be exploitable via the victim opening a specially crafted circuit file. This vulnerability appears to have been fixed in 2.14.4.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0029

Percentile

0,5th

Updated

EPSS Score Trend (Last 90 Days)

611

Improper Restriction of XML External Entity Reference

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality Integrity Availability

Potential Impacts:

Read Application Data Read Files Or Directories Bypass Protection Mechanism Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory)

Applicable Platforms

Languages: Not Language-Specific, XML

Technologies: Not Technology-Specific, Web Based

View CWE Details

Application

Logisim-Evolution by Logisim-Evolution Project

Product Information

Vendor Logisim-Evolution Project

Product Logisim-Evolution

Version Range Affected

To 2.14.3 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:logisim-evolution_project:logisim-evolution:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://github.com/reds-heig/logisim-evolution/pull/139

Patch Third Party Advisory

https://github.com/reds-heig/logisim-evolution/pull/139

https://www.kvakil.me/posts/logisim/

Third Party Advisory

https://www.kvakil.me/posts/logisim/

https://github.com/reds-heig/logisim-evolution/pull/139

Patch Third Party Advisory

https://github.com/reds-heig/logisim-evolution/pull/139

https://www.kvakil.me/posts/logisim/

Third Party Advisory

https://www.kvakil.me/posts/logisim/

CVE-2018-1000889

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

Improper Restriction of XML External Entity Reference

Common Consequences

Applicable Platforms

Logisim-Evolution by Logisim-Evolution Project

Product Information

Iscriviti alla newsletter