Lucene search
K

85 matches found

Github Security Blog
Github Security Blog
added 2021/07/01 5:2 p.m.69 views

Ratpack's default client side session signing key is highly predictable

Impact The client side session module uses the application startup time as the signing key by default. This means that if an attacker can determine this time, and if encryption is not also used which is recommended, but is not on by default, the session data could be tampered with by someone with...

4.4CVSS0.5AI score0.00262EPSS
Exploits0References4Affected Software1
vulnersOsv
vulnersOsv
added 2021/07/01 5:2 p.m.5 views

com.github.grooviter:gql-ratpack (=0.5.0), io.ratpack:ratpack-pac4j (>=0.9.3 <=1.10.0-milestone-39) +3 more potentially affected by CVE-2021-29481 via io.ratpack:ratpack-session (>=0.9.10 <=1.9.0-rc-2)

io.ratpack:ratpack-session MAVEN version =0.9.10, =0.9.3, =1.0.0, =1.9.0-rc-1, =1.4.6, =3.0.0 Source cves: CVE-2021-29481 Source advisory: OSV:GHSA-PHJ8-4CQ3-794G...

7.5CVSS7.1AI score0.00455EPSS
Exploits0
OSV
OSV
added 2021/07/01 5:2 p.m.13 views

GHSA-PHJ8-4CQ3-794G Unencrypted storage of client side sessions

Impact The default configuration of client side sessions results in unencrypted, but signed, data being set as cookie values. This means that if something sensitive goes into the session, it could be read by something with access to the cookies. Note: the documentation does point this out and...

6.5CVSS7.2AI score0.00455EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2021/07/01 5:1 p.m.4 views

com.bertramlabs.plugins:ratpack-asset-pipeline (>=2.2.7 <=4.3.0), com.bytekast.serverless-local-apigateway:com.bytekast.serverless-local-apigateway.gradle.plugin (>=0.4 <=0.5) +90 more potentially affected by CVE-2021-29485 via io.ratpack:ratpack-core (>=0.9.0 <=1.9.0-rc-2)

io.ratpack:ratpack-core MAVEN version =0.9.0, =2.2.7, =0.4, =0.0.1, =0.0.1, =0.0.2, =1.0.0, =1.2, =1.2, =1.3, =1.1, =1.1, =1.5, =1.1, =1.8 and more Source cves: CVE-2021-29485 Source advisory: OSV:GHSA-HC33-32VW-RPP9...

9.9CVSS7.6AI score0.01973EPSS
Exploits0
OSV
OSV
added 2021/07/01 5:1 p.m.35 views

GHSA-HC33-32VW-RPP9 Remote Code Execution Vulnerability in Session Storage

Impact A malicious attacker can achieve Remote Code Execution RCE via a maliciously crafted Java deserialization gadget chain leveraged against the Ratpack session store. If your application does not use Ratpack's session mechanism, it is not vulnerable. Details Attackers with the ability to writ...

9.9CVSS9.6AI score0.01973EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2021/07/01 5:1 p.m.198 views

Remote Code Execution Vulnerability in Session Storage

Impact A malicious attacker can achieve Remote Code Execution RCE via a maliciously crafted Java deserialization gadget chain leveraged against the Ratpack session store. If your application does not use Ratpack's session mechanism, it is not vulnerable. Details Attackers with the ability to writ...

9.9CVSS0.5AI score0.01973EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2021/07/01 12:0 a.m.8 views

Unspecified vulnerability in Ratpack (CNVD-2021-52416)

Ratpack is a Java library for building scalable HTTP applications. A security vulnerability exists in Ratpack versions prior to 1.9.0, which can be exploited by an attacker to achieve remote code execution via a maliciously crafted chain of Java deserialization gadgets targeting Ratpack session...

9.9CVSS7.7AI score0.01973EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/01 12:0 a.m.9 views

Ratpack has an unspecified vulnerability

Ratpack is a Java library for building scalable HTTP applications. A security vulnerability exists in versions of Ratpack prior to 1.9.0, which can be exploited by attackers to force a cache redirection to their site...

7CVSS6.7AI score0.00857EPSS
Exploits1References1
CNVD
CNVD
added 2021/07/01 12:0 a.m.6 views

Unspecified vulnerability in Ratpack (CNVD-2021-52414)

Ratpack is a Java library for building scalable HTTP applications. A security vulnerability exists in Ratpack versions prior to 1.9.0, which stems from a default configuration of a client session that results in unencrypted but signed data being set as a cookie value. An attacker could exploit th...

7.5CVSS6.6AI score0.00455EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/01 12:0 a.m.9 views

Unspecified vulnerability in Ratpack (CNVD-2021-52413)

Ratpack is a Java library for building scalable HTTP applications. A security vulnerability exists in Ratpack versions prior to 1.9.0, which stems from the client-side session module defaulting to using the application startup time as the signing key, and can be exploited by an attacker to tamper...

4.4CVSS6.7AI score0.00262EPSS
Exploits0References1
OSV
OSV
added 2021/06/29 7:15 p.m.9 views

CVE-2021-29481

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, the default configuration of client side sessions results in unencrypted, but signed, data being set as cookie values. This means that if something sensitive goes into the session, it could be read by something with...

7.5CVSS5.7AI score0.00455EPSS
Exploits0References2
OSV
OSV
added 2021/06/29 7:15 p.m.15 views

CVE-2021-29485

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, a malicious attacker can achieve Remote Code Execution RCE via a maliciously crafted Java deserialization gadget chain leveraged against the Ratpack session store. If one's application does not use Ratpack's session...

8.8CVSS7.8AI score
Exploits0References2
NVD
NVD
added 2021/06/29 7:15 p.m.28 views

CVE-2021-29485

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, a malicious attacker can achieve Remote Code Execution RCE via a maliciously crafted Java deserialization gadget chain leveraged against the Ratpack session store. If one's application does not use Ratpack's session...

9.9CVSS0.01973EPSS
Exploits0References2
OSV
OSV
added 2021/06/29 7:15 p.m.16 views

CVE-2021-29480

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, the client side session module uses the application startup time as the signing key by default. This means that if an attacker can determine this time, and if encryption is not also used which is recommended, but is n...

3.1CVSS7AI score
Exploits0References2
NVD
NVD
added 2021/06/29 7:15 p.m.21 views

CVE-2021-29481

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, the default configuration of client side sessions results in unencrypted, but signed, data being set as cookie values. This means that if something sensitive goes into the session, it could be read by something with...

7.5CVSS0.00455EPSS
Exploits0References2
NVD
NVD
added 2021/06/29 7:15 p.m.21 views

CVE-2021-29480

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, the client side session module uses the application startup time as the signing key by default. This means that if an attacker can determine this time, and if encryption is not also used which is recommended, but is n...

4.4CVSS0.00262EPSS
Exploits0References2
Prion
Prion
added 2021/06/29 7:15 p.m.14 views

Design/Logic Flaw

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, the default configuration of client side sessions results in unencrypted, but signed, data being set as cookie values. This means that if something sensitive goes into the session, it could be read by something with...

5CVSS7.1AI score0.00455EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/06/29 7:15 p.m.18 views

Deserialization of untrusted data

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, a malicious attacker can achieve Remote Code Execution RCE via a maliciously crafted Java deserialization gadget chain leveraged against the Ratpack session store. If one's application does not use Ratpack's session...

6.5CVSS8.8AI score0.01973EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/06/29 7:15 p.m.14 views

Default configuration

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, the client side session module uses the application startup time as the signing key by default. This means that if an attacker can determine this time, and if encryption is not also used which is recommended, but is n...

3.5CVSS4AI score0.00262EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/06/29 6:35 p.m.26 views

CVE-2021-29485 Remote Code Execution Vulnerability in Session Storage

Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, a malicious attacker can achieve Remote Code Execution RCE via a maliciously crafted Java deserialization gadget chain leveraged against the Ratpack session store. If one's application does not use Ratpack's session...

9.9CVSS9.9AI score0.01973EPSS
Exploits0References2
Rows per page
Query Builder