CVE-2020-5396 JMX Insecure Default Configuration in GemFire

2020-07-3000:00:00

CWE-284

pivotal

www.cve.org

9 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.0%

JSON

VMware GemFire versions prior to 9.10.0, 9.9.2, 9.8.7, and 9.7.6, and VMware Tanzu GemFire for VMs versions prior to 1.11.1 and 1.10.2, when deployed without a SecurityManager, contain a JMX service available which contains an insecure default configuration. This allows a malicious user to create an MLet mbean leading to remote code execution.

CNA Affected

[
  {
    "product": "VMware Tanzu GemFire for VMs",
    "vendor": "VMware Tanzu",
    "versions": [
      {
        "lessThan": "1.10.2",
        "status": "affected",
        "version": "1.10",
        "versionType": "custom"
      },
      {
        "lessThan": "1.11.1",
        "status": "affected",
        "version": "1.11",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "VMware GemFire",
    "vendor": "VMware Tanzu",
    "versions": [
      {
        "lessThan": "9.7.6",
        "status": "affected",
        "version": "9.7",
        "versionType": "custom"
      },
      {
        "lessThan": "9.8.7",
        "status": "affected",
        "version": "9.8",
        "versionType": "custom"
      },
      {
        "lessThan": "9.9.2",
        "status": "affected",
        "version": "9.9",
        "versionType": "custom"
      },
      {
        "lessThan": "9.10.0",
        "status": "affected",
        "version": "9.10",
        "versionType": "custom"
      }
    ]
  }
]

References

tanzu.vmware.com/security/cve-2020-5396