Lucene search

GitHub Advisory DatabaseGHSA-279P-PC38-XX4P

HistoryMay 25, 2022 - 7:21 p.m.

JFinal file validation vulnerability

2022-05-2519:21:15

CWE-434

GitHub Advisory Database

github.com

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

50.6%

JSON

In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile() function: one can upload any type of file. For example, a .jsp file may be stored and almost immediately deleted, but this deletion step does not occur for certain exceptions.

Affected configurations

Vulners

Node

com.jfinal\Matchjfinal

CPENameOperatorVersion
com.jfinal:jfinallt4.5

CPE	Name	Operator	Version
	com.jfinal:jfinal	lt	4.5

References

gitee.com/jfinal/cos/commit/5eb23d6e384abaad19faa7600d14c9a2f525946a

gitee.com/jfinal/cos/commit/8d26eec61f0d072a68bf7393cf3a8544a1112130

github.com/advisories/GHSA-279p-pc38-xx4p

github.com/jfinal/jfinal/issues/171

nvd.nist.gov/vuln/detail/CVE-2019-17352

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

50.6%

JSON

Related for GHSA-279P-PC38-XX4P