Authorization Bypass

2023-07-2702:57:32

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

armeria

authorization

bypass

vulnerability

tomcatservice

jettyservice

library

server

attacker

request

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

24.3%

JSON

armeria is Authorization Bypass. The vulnerability exists because the library does not properly remove matrix variables from the path on the server side when the library calls the spring controller via TomcatService or JettyService, which allows an attacker to bypass the authorization mechanism by sending a malicious request such as /important;a=b/resources

CPENameOperatorVersion
armeria (armeria)le1.24.2
armeria (armeria-tomcat10)le1.24.2
armeria (armeria-jetty9)le1.24.2
armeria (armeria-jetty11)le1.24.2
armeria (armeria)le1.24.2
armeria (armeria-tomcat10)le1.24.2
armeria (armeria-jetty9)le1.24.2
armeria (armeria-jetty11)le1.24.2

Name	Operator	Version
armeria (armeria)	le	1.24.2
armeria (armeria-tomcat10)	le	1.24.2
armeria (armeria-jetty9)	le	1.24.2
armeria (armeria-jetty11)	le	1.24.2
armeria (armeria)	le	1.24.2
armeria (armeria-tomcat10)	le	1.24.2
armeria (armeria-jetty9)	le	1.24.2
armeria (armeria-jetty11)	le	1.24.2