Lucene search
EclipseCVELIST:CVE-2023-0100HistoryMar 15, 2023 - 12:00 a.m.
CVE-2023-0100
2023-03-1500:00:00
CWE-20
eclipse
www.cve.org
eclipse birt
report retrieval
absolute http path
vulnerability
patched
apache tomcat
birt server
In Eclipse BIRT, starting from version 2.6.2, the default configuration allowed to retrieve a report from the same host using an absolute HTTP path for the report parameter (e.g. __report=http://xyz.com/report.rptdesign). If the host indicated in the __report parameter matched the HTTP Host header value, the report would be retrieved. However, the Host header can be tampered with on some configurations where no virtual hosts are put in place (e.g. in the default configuration of Apache Tomcat) or when the default host points to the BIRT server. This vulnerability was patched on Eclipse BIRT 4.13.
CNA Affected
[
{
"vendor": "The Eclipse Foundation",
"product": "Eclipse BIRT (Business Intelligence Reporting Tool)",
"versions": [
{
"version": "2.6.2",
"status": "affected",
"lessThan": "unspecified",
"versionType": "custom"
},
{
"version": "unspecified",
"lessThan": "4.13",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
veracode
veracode
Remote Code Execution (RCE)
2023-03-16 01:50:15
redhatcve
redhatcve
CVE-2023-0100
2023-03-16 06:13:04
nessus
nessus
RHEL 6 : eclipse-birt (Unpatched Vulnerability)
2024-05-11 00:00:00
prion
prion
Design/Logic Flaw
2023-03-15 15:15:00
osv
osv
CVE-2023-0100
2023-03-15 15:15:09
Improper Input Validation In Eclipse BIRT
2023-03-15 15:30:22
nvd
nvd
CVE-2023-0100
2023-03-15 15:15:09
cve
cve
CVE-2023-0100
2023-03-15 15:15:09
github
github
Improper Input Validation In Eclipse BIRT
2023-03-15 15:30:22