トピトピニュース

[org.apache.struts:struts2-core] Code injection in Apache Struts

Posted inHIGH
Posted byGitHub
05/17/202211/04/2022

Apache Struts 2.0.0 through 2.3.15.1 enables Dynamic Method Invocation by default, which has unknown impact and attack vectors.
References

https://nvd.nist.gov/vuln/detail/CVE-2013-4316
http://archives.neohapsis.com/archives/bugtraq/2013-09/0107.html
…

[org.jruby:jruby] Ruby vulnerable to denial of service

When reading text nodes from an XML document, the REXML parser can be coerced in to allocating extremely large string objects which can consume all of the memory on a machine, causing a denial of service.
Jruby resolves this bug in version 1.7.3 as not…

[org.apache.geode:geode-core] Apache Geode information disclosure vulnerability

Posted inHIGH
Posted byGitHub
05/17/202211/08/2022

Apache Geode before 1.1.1, when a cluster has enabled security by setting the security-manager property, allows remote authenticated users with CLUSTER:READ but not DATA:READ permission to access the data browser page in Pulse and consequently execute …

[org.apache.sling:org.apache.sling.xss] XML External Entity Reference in Apache Sling

In the XSS Protection API module before 1.0.12 in Apache Sling, the method XSS.getValidXML() uses an insecure SAX parser to validate the input string, which allows for XXE attacks in all scripts which use this method to validate user input, potentially…

[org.apache.struts:struts2-core] Possible DoS attack when using URLValidator

The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field.
References

https://nvd.nist.gov/vuln/detail/CVE-2016-4465
https://bugzilla….

[org.apache.struts:struts2-core] Cross-Site Request Forgery in Apache Struts

The token check mechanism in Apache Struts 2.0.0 through 2.3.4 does not properly validate the token name configuration parameter, which allows remote attackers to perform cross-site request forgery (CSRF) attacks by setting the token name configuration…

[org.apache.struts:struts2-core] Denial of service in Apache Struts

Apache Struts 2.0.0 through 2.3.4 allows remote attackers to cause a denial of service (CPU consumption) via a long parameter name, which is processed as an OGNL expression.
References

https://nvd.nist.gov/vuln/detail/CVE-2012-4387
https://exchange.xf…

[org.apache.atlas:atlas-common] Insecure cookie storage in Apache Atlas

Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be accessible to client-side script.
References

https://nvd.nist.gov/vuln/detail/CVE-2017-3150
https://lists.apache.org/thread.html/4a4fef91e067fd0d9da569e30867c1fa65e2…

[org.apache.atlas:atlas-common] Path Traversal in Apache Atlas

Posted inHIGH
Posted byGitHub
05/17/202211/05/2022

Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allow access to the webapp directory contents by pointing to URIs like /js and /img.
References

https://nvd.nist.gov/vuln/detail/CVE-2016-8752
https://lists.apache.or…

[org.apache.atlas:atlas-common] Cross-site Scripting in Apache Atlas

Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Reflected XSS in the search functionality.
References

https://nvd.nist.gov/vuln/detail/CVE-2017-3153
https://lists.apache.org/thread.html/4a4fef91e067fd0d9da569e30867…