Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2020-5411
HistoryJun 11, 2020 - 5:15 p.m.

CVE-2020-5411

2020-06-1117:15:12
CWE-502
[email protected]
web.nvd.nist.gov
46
jackson
cve-2020-5411
deserialization vulnerability
arbitrary code execution
spring batch
default typing
security
nvd

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.7%

JSON

When configured to enable default typing, Jackson contained a deserialization vulnerability that could lead to arbitrary code execution. Jackson fixed this vulnerability by blacklisting known “deserialization gadgets”. Spring Batch configures Jackson with global default typing enabled which means that through the previous exploit, arbitrary code could be executed if all of the following is true: * Spring Batch’s Jackson support is being leveraged to serialize a job’s ExecutionContext. * A malicious user gains write access to the data store used by the JobRepository (where the data to be deserialized is stored). In order to protect against this type of attack, Jackson prevents a set of untrusted gadget classes from being deserialized. Spring Batch should be proactive against blocking unknown “deserialization gadgets” when enabling default typing.

Affected configurations

NVD
Node
pivotal_softwarespring_batchRange4.0.04.0.4
OR
pivotal_softwarespring_batchRange4.1.04.1.4
OR
pivotal_softwarespring_batchRange4.2.04.2.2

CNA Affected

[
  {
    "product": "Spring Batch",
    "vendor": "Spring by VMware",
    "versions": [
      {
        "lessThan": "4.2.3",
        "status": "affected",
        "version": "4",
        "versionType": "custom"
      }
    ]
  }
]

Related

prion 1
redhatcve 1
veracode 1
cvelist 1
nvd 1
osv 2
github 1
ibm 1
prion
prion
Deserialization of untrusted data
2020-06-11 17:15:00
redhatcve
redhatcve
CVE-2020-5411
2020-07-31 19:43:32
veracode
veracode
Remote Code Execution
2020-08-03 07:00:13
cvelist
cvelist
CVE-2020-5411 Jackson Configuration Allows Code Execution with Unknown "Serialization Gadgets"
2020-06-11 00:00:00
nvd
nvd
CVE-2020-5411
2020-06-11 17:15:12
osv
osv
Deserialization of Untrusted Data in Spring Batch
2022-05-24 17:20:22
CVE-2020-5411
2020-06-11 17:15:00
github
github
Deserialization of Untrusted Data in Spring Batch
2022-05-24 17:20:22
ibm
ibm
Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities
2021-02-02 05:06:51

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.7%

JSON
Related for CVE-2020-5411
prion1redhatcve1veracode1cvelist1nvd1osv2github1ibm1