Lucene search

Veracode Vulnerability DatabaseVERACODE:44764

HistoryDec 20, 2023 - 10:06 a.m.

Path Traversal

2023-12-2010:06:37

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

path traversal

apache tiles

defaultlocaleresolver

server side request forgery

xml external entity injection

user-controlled data

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

23.1%

JSON

org.apache.tiles: tiles-core is vulnerable to Path Traversal. The vulnerability is due to missing validation in the DefaultLocaleResolver.LOCALE_KEY attribute set on the session while resolving XML definition files. This can lead to Server Side Request Forgery (SSRF) or XML External Entity Injection (XXE) when user-controlled data is passed to this key. An example of passing user-controlled data to this key is (which is relatively common), is setting the language in tiles-test application shipped with the Tiles project.

CPENameOperatorVersion
tiles - core libraryle3.0.8
tiles - core libraryle3.0.8

CPE	Name	Operator	Version
	tiles - core library	le	3.0.8
	tiles - core library	le	3.0.8

References

github.com/advisories/GHSA-qw4h-3xjj-84cc

lists.apache.org/thread/8ktm4vxr6vvc1qsxh6ft8jzmom1zl65p

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

23.1%

JSON

Related for VERACODE:44764