Lucene search
PRIOn knowledge basePRION:CVE-2023-0100HistoryMar 15, 2023 - 3:15 p.m.
Design/Logic Flaw
2023-03-1515:15:00
PRIOn knowledge base
www.prio-n.com
4
eclipse birt
insecure configuration
report retrieval
http host header
patched vulnerability
apache tomcat
logic flaw
In Eclipse BIRT, starting from version 2.6.2, the default configuration allowed to retrieve a report from the same host using an absolute HTTP path for the report parameter (e.g. __report=http://xyz.com/report.rptdesign). If the host indicated in the __report parameter matched the HTTP Host header value, the report would be retrieved. However, the Host header can be tampered with on some configurations where no virtual hosts are put in place (e.g. in the default configuration of Apache Tomcat) or when the default host points to the BIRT server. This vulnerability was patched on Eclipse BIRT 4.13.
| CPE | Name | Operator | Version |
|---|---|---|---|
| business_intelligence_and_reporting_tools | ge | 2.6.2 | |
| business_intelligence_and_reporting_tools | lt | 4.13.0 |
Related
veracode
veracode
Remote Code Execution (RCE)
2023-03-16 01:50:15
redhatcve
redhatcve
CVE-2023-0100
2023-03-16 06:13:04
nessus
nessus
RHEL 6 : eclipse-birt (Unpatched Vulnerability)
2024-05-11 00:00:00
osv
osv
CVE-2023-0100
2023-03-15 15:15:09
Improper Input Validation In Eclipse BIRT
2023-03-15 15:30:22
nvd
nvd
CVE-2023-0100
2023-03-15 15:15:09
cve
cve
CVE-2023-0100
2023-03-15 15:15:09
cvelist
cvelist
CVE-2023-0100
2023-03-15 00:00:00
github
github
Improper Input Validation In Eclipse BIRT
2023-03-15 15:30:22