CVE-2020-1714

Current Description

A flaw was found in Keycloak before version 11.0.0, where the code base contains usages of ObjectInputStream without type checks. This flaw allows an attacker to inject arbitrarily serialized Java Objects, which would then get deserialized in a privileged context and potentially lead to remote code execution.

Basic Data

PublishedMay 13, 2020
Last ModifiedMay 15, 2020
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-20
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationSINGLE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score6.5
SeverityMEDIUM
Exploitability Score8.0
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationRedhatKeycloak********11.0.0
  • OR - Configuration 2
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationRedhatDecision Manager7.0*******
    2.3ApplicationRedhatJboss Fuse7.0.0*******
    2.3ApplicationRedhatOpenshift Application Runtimes-*******
    2.3ApplicationRedhatProcess Automation7.0*******
    2.3ApplicationRedhatSingle Sign-on7.0*******

Vulnerable Software List

VendorProductVersions
Redhat Jboss Fuse 7.0.0
Redhat Single Sign-on 7.0
Redhat Keycloak *
Redhat Process Automation 7.0
Redhat Openshift Application Runtimes -
Redhat Decision Manager 7.0

References

NameSourceURLTags
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1714https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1714CONFIRMIssue Tracking Third Party Advisory
https://github.com/keycloak/keycloak/pull/7053https://github.com/keycloak/keycloak/pull/7053CONFIRMPatch Third Party Advisory