Lucene search

GitHub Advisory DatabaseGHSA-XC93-587G-MXM7

HistoryMar 30, 2023 - 9:30 p.m.

Payara Server allows remote attackers to load malicious code on the server once a JNDI directory scan is performed

2023-03-3021:30:21

GitHub Advisory Database

github.com

security vulnerability

remote code execution

jndi directory scan

payara server

orb listener

java 1.8u181

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

65.8%

JSON

A JNDI rebind operation in the default ORB listener in Payara Server 4.1.2.191 (Enterprise), 5.20.0 and newer (Enterprise), and 5.2020.1 and newer (Community), when Java 1.8u181 and earlier is used, allows remote attackers to load malicious code on the server once a JNDI directory scan is performed.

Affected configurations

Vulners

Node

fish.payara.serverpayara-aggregatorRange5.2020.1–6.2022.1.Alpha3

VendorProductVersionCPE
fish.payara.serverpayara-aggregator*cpe:2.3:a:fish.payara.server:payara-aggregator:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fish.payara.server	payara-aggregator	*	cpe:2.3:a:fish.payara.server:payara-aggregator::::::::

References

blog.payara.fish/vulnerability-affecting-server-environments-on-java-1.8-on-updates-lower-than-1.8u191

github.com/advisories/GHSA-xc93-587g-mxm7

nvd.nist.gov/vuln/detail/CVE-2023-28462

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

65.8%

JSON

Related for GHSA-XC93-587G-MXM7