CVE-2020-13942
CRITICAL
9,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
HIGH
7,5
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: none
Confidentiality: partial
Integrity: partial
Availability: partial
Description
AI Translation Available
It is possible to inject malicious OGNL or MVEL scripts into the /context.json public endpoint. This was partially fixed in 1.5.1 but a new attack vector was found. In Apache Unomi version 1.5.2 scripts are now completely filtered from the input. It is highly recommended to upgrade to the latest available version of the 1.5.x release to fix this problem.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,9432
Percentile
1,0th
Updated
EPSS Score Trend (Last 90 Days)
20
Improper Input Validation
StableCommon Consequences
Security Scopes Affected:
Availability
Confidentiality
Integrity
Potential Impacts:
Dos: Crash, Exit, Or Restart
Dos: Resource Consumption (Cpu)
Dos: Resource Consumption (Memory)
Read Memory
Read Files Or Directories
Modify Memory
Execute Unauthorized Code Or Commands
Applicable Platforms
All platforms may be affected
74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
IncompleteCommon Consequences
Security Scopes Affected:
Confidentiality
Access Control
Other
Integrity
Non-Repudiation
Potential Impacts:
Read Application Data
Bypass Protection Mechanism
Alter Execution Logic
Other
Hide Activities
Applicable Platforms
All platforms may be affected
Application
Unomi by Apache
Version Range Affected
From
1.5.0
(inclusive)
To
1.5.2
(exclusive)
CPE Identifier
View Detailed Analysis
cpe:2.3:a:apache:unomi:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://advisory.checkmarx.net/advisory/CX-2020-4284
https://lists.apache.org/thread.html/r08a4057ff7196b8880117edaa4b6207cbd36ed692…
https://lists.apache.org/thread.html/r4a8fa91836687eaca42b5420a778ca8c8fd3a3740…
https://lists.apache.org/thread.html/r4a8fa91836687eaca42b5420a778ca8c8fd3a3740…
https://lists.apache.org/thread.html/r79672c25e0ef9bb4b9148376281200a8e61c6d5ef…
https://lists.apache.org/thread.html/rcb6d2eafcf15def433aaddfa06738e5faa5060cef…
https://lists.apache.org/thread.html/rcb6d2eafcf15def433aaddfa06738e5faa5060cef…
http://unomi.apache.org/security/cve-2020-13942.txt
http://www.openwall.com/lists/oss-security/2020/11/24/5
https://advisory.checkmarx.net/advisory/CX-2020-4284
https://lists.apache.org/thread.html/r08a4057ff7196b8880117edaa4b6207cbd36ed692…
https://lists.apache.org/thread.html/r4a8fa91836687eaca42b5420a778ca8c8fd3a3740…
https://lists.apache.org/thread.html/r4a8fa91836687eaca42b5420a778ca8c8fd3a3740…
https://lists.apache.org/thread.html/r79672c25e0ef9bb4b9148376281200a8e61c6d5ef…
https://lists.apache.org/thread.html/rcb6d2eafcf15def433aaddfa06738e5faa5060cef…
https://lists.apache.org/thread.html/rcb6d2eafcf15def433aaddfa06738e5faa5060cef…
http://unomi.apache.org/security/cve-2020-13942.txt
http://www.openwall.com/lists/oss-security/2020/11/24/5