CVE-2017-7545

Current Description

It was discovered that the XmlUtils class in jbpmmigration 6.5 performed expansion of external parameter entities while parsing XML files. A remote attacker could use this flaw to read files accessible to the user running the application server and, potentially, perform other more advanced XML eXternal Entity (XXE) attacks.

Basic Data

PublishedJuly 26, 2018
Last ModifiedOctober 09, 2019
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-611
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:S/C:P/I:N/A:N
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationSINGLE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactNONE
CVSS 2 - Base Score4.0
SeverityMEDIUM
Exploitability Score8.0
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

CVSS 3 - Version3.0
CVSS 3 - Vector StringCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVSS 3 - Attack VectorNETWORK
CVSS 3 - Attack ComplexityLOW
CVSS 3 - Privileges RequiredLOW
CVSS 3 - User InteractionNONE
CVSS 3 - ScopeUNCHANGED
CVSS 3 - Confidentiality ImpactHIGH
CVSS 3 - Integrity ImpactNONE
CVSS 3 - Availability ImpactNONE
CVSS 3 - Base Score6.5
CVSS 3 - Base SeverityMEDIUM
Exploitability Score2.8
Base SeverityMEDIUM

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationRedhatDecision Manager7.0*******
    2.3ApplicationRedhatJboss Bpm Suite6.4*******
    2.3ApplicationRedhatJbpm6.5*******

Vulnerable Software List

VendorProductVersions
Redhat Jbpm 6.5
Redhat Jboss Bpm Suite 6.4
Redhat Decision Manager 7.0

References

NameSourceURLTags
102179http://www.securityfocus.com/bid/102179BIDThird Party Advisory VDB Entry
RHSA-2017:3354https://access.redhat.com/errata/RHSA-2017:3354REDHATVendor Advisory
RHSA-2017:3355https://access.redhat.com/errata/RHSA-2017:3355REDHATVendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7545https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7545CONFIRMIssue Tracking Patch Vendor Advisory
https://github.com/kiegroup/jbpm-designer/commit/a143f3b92a6a5a527d929d68c02a0c5d914ab81dhttps://github.com/kiegroup/jbpm-designer/commit/a143f3b92a6a5a527d929d68c02a0c5d914ab81dCONFIRMPatch Third Party Advisory