Open mend-for-github-com[bot] opened 2 years ago
:heavy_check_mark: This issue was automatically closed by WhiteSource because the vulnerable library in the specific branch(es) was either marked as ignored or it is no longer part of the WhiteSource inventory.
:information_source: This issue was automatically re-opened by WhiteSource because the vulnerable library in the specific branch(es) has been detected in the WhiteSource inventory.
:heavy_check_mark: This issue was automatically closed by WhiteSource because the vulnerable library in the specific branch(es) was either marked as ignored or it is no longer part of the WhiteSource inventory.
:information_source: This issue was automatically re-opened by WhiteSource because the vulnerable library in the specific branch(es) has been detected in the WhiteSource inventory.
:information_source: This issue was automatically re-opened by WhiteSource because the vulnerable library in the specific branch(es) has been detected in the WhiteSource inventory.
Vulnerable Library - webwolf-v8.0.0-SNAPSHOT.jar
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/spring-beans/5.2.2.RELEASE/spring-beans-5.2.2.RELEASE.jar
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Vulnerabilities
Details
CVE-2022-22965
### Vulnerable Library - spring-beans-5.2.2.RELEASE.jarSpring Beans
Library home page: https://github.com/spring-projects/spring-framework
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/spring-beans/5.2.2.RELEASE/spring-beans-5.2.2.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-security-2.2.2.RELEASE.jar - spring-aop-5.2.2.RELEASE.jar - :x: **spring-beans-5.2.2.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is not vulnerable to the exploit. However, the nature of the vulnerability is more general, and there may be other ways to exploit it.
Publish Date: 2022-04-01
URL: CVE-2022-22965
### CVSS 3 Score Details (9.8)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement
Release Date: 2022-04-01
Fix Resolution: org.springframework:spring-beans:5.2.20.RELEASE,5.3.18
CVE-2016-1000027
### Vulnerable Library - spring-web-5.2.2.RELEASE.jarSpring Web
Library home page: https://github.com/spring-projects/spring-framework
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/spring-web/5.2.2.RELEASE/spring-web-5.2.2.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-web-2.2.2.RELEASE.jar - :x: **spring-web-5.2.2.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsPivotal Spring Framework through 5.3.16 suffers from a potential remote code execution (RCE) issue if used for Java deserialization of untrusted data. Depending on how the library is implemented within a product, this issue may or not occur, and authentication may be required. NOTE: the vendor's position is that untrusted data is not an intended use case. The product's behavior will not be changed because some users rely on deserialization of trusted data.
Publish Date: 2020-01-02
URL: CVE-2016-1000027
### CVSS 3 Score Details (9.8)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://nvd.nist.gov/vuln/detail/CVE-2016-1000027
Release Date: 2020-01-02
Fix Resolution: org.springframework:spring-web - 4.3.26.RELEASE,4.3.28.RELEASE,5.0.18.RELEASE,5.2.13.RELEASE,5.1.16.RELEASE;org.apache.servicemix.bundles:org.apache.servicemix.bundles.spring-web - 5.1.6.RELEASE_1,4.3.23.RELEASE_1,4.1.0.RELEASE_1,4.0.2.RELEASE_1,4.0.6.RELEASE_1,4.0.5.RELEASE_1,5.1.1.RELEASE_1,4.3.22.RELEASE_1,4.0.7.RELEASE_4,4.1.1.RELEASE_1,4.0.3.RELEASE_1,5.0.13.RELEASE_1,4.1.9.RELEASE_2,4.0.7.RELEASE_1,5.2.15.RELEASE_1-fuse-redhat-00001,5.0.11.RELEASE_1
CVE-2020-10683
### Vulnerable Library - dom4j-2.1.1.jarflexible XML framework for Java
Library home page: http://dom4j.github.io/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/dom4j/dom4j/2.1.1/dom4j-2.1.1.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-data-jpa-2.2.2.RELEASE.jar - hibernate-core-5.4.9.Final.jar - :x: **dom4j-2.1.1.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability Detailsdom4j before 2.0.3 and 2.1.x before 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. However, there is popular external documentation from OWASP showing how to enable the safe, non-default behavior in any application that uses dom4j.
Publish Date: 2020-05-01
URL: CVE-2020-10683
### CVSS 3 Score Details (9.8)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Release Date: 2020-05-01
Fix Resolution: org.dom4j:dom4j:2.1.3,org.dom4j:dom4j:2.0.3
CVE-2020-1745
### Vulnerable Library - undertow-core-2.0.28.Final.jarUndertow
Library home page: http://www.jboss.org/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/io/undertow/undertow-core/2.0.28.Final/undertow-core-2.0.28.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-undertow-2.2.2.RELEASE.jar - :x: **undertow-core-2.0.28.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA file inclusion vulnerability was found in the AJP connector enabled with a default AJP configuration port of 8009 in Undertow version 2.0.29.Final and before and was fixed in 2.0.30.Final. A remote, unauthenticated attacker could exploit this vulnerability to read web application files from a vulnerable server. In instances where the vulnerable server allows file uploads, an attacker could upload malicious JavaServer Pages (JSP) code within a variety of file types and trigger this vulnerability to gain remote code execution.
Publish Date: 2020-04-28
URL: CVE-2020-1745
### CVSS 3 Score Details (9.8)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1745
Release Date: 2020-04-28
Fix Resolution: io.undertow:undertow-core:2.0.30.Final
CVE-2021-22112
### Vulnerable Library - spring-security-web-5.2.1.RELEASE.jarspring-security-web
Library home page: http://spring.io/spring-security
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/security/spring-security-web/5.2.1.RELEASE/spring-security-web-5.2.1.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-security-2.2.2.RELEASE.jar - :x: **spring-security-web-5.2.1.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsSpring Security 5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE, 5.2.x prior to 5.2.9.RELEASE, and older unsupported versions can fail to save the SecurityContext if it is changed more than once in a single request.A malicious user cannot cause the bug to happen (it must be programmed in). However, if the application's intent is to only allow the user to run with elevated privileges in a small portion of the application, the bug can be leveraged to extend those privileges to the rest of the application.
Publish Date: 2021-02-23
URL: CVE-2021-22112
### CVSS 3 Score Details (8.8)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://tanzu.vmware.com/security/cve-2021-22112
Release Date: 2021-02-23
Fix Resolution: org.springframework.security:spring-security-web:5.2.9,5.3.8,5.4.4
CVE-2020-1757
### Vulnerable Library - undertow-core-2.0.28.Final.jarUndertow
Library home page: http://www.jboss.org/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/io/undertow/undertow-core/2.0.28.Final/undertow-core-2.0.28.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-undertow-2.2.2.RELEASE.jar - :x: **undertow-core-2.0.28.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA flaw was found in all undertow-2.x.x SP1 versions prior to undertow-2.0.30.SP1, all undertow-1.x.x and undertow-2.x.x versions prior to undertow-2.1.0.Final, where the Servlet container causes servletPath to normalize incorrectly by truncating the path after semicolon which may lead to an application mapping resulting in the security bypass.
Publish Date: 2020-04-21
URL: CVE-2020-1757
### CVSS 3 Score Details (8.1)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: None
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1757
Release Date: 2020-04-30
Fix Resolution: io.undertow:undertow-core:2.0.30.Final, io.undertow:undertow-examples:2.0.30.Final
CVE-2022-41853
### Vulnerable Library - hsqldb-2.5.0.jarHSQLDB - Lightweight 100% Java SQL Database Engine
Library home page: http://hsqldb.org
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/hsqldb/hsqldb/2.5.0/hsqldb-2.5.0.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - :x: **hsqldb-2.5.0.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsThose using java.sql.Statement or java.sql.PreparedStatement in hsqldb (HyperSQL DataBase) to process untrusted input may be vulnerable to a remote code execution attack. By default it is allowed to call any static method of any Java class in the classpath resulting in code execution. The issue can be prevented by updating to 2.7.1 or by setting the system property "hsqldb.method_class_names" to classes which are allowed to be called. For example, System.setProperty("hsqldb.method_class_names", "abc") or Java argument -Dhsqldb.method_class_names="abc" can be used. From version 2.7.1 all classes by default are not accessible except those in java.lang.Math and need to be manually enabled.
Publish Date: 2022-10-06
URL: CVE-2022-41853
### CVSS 3 Score Details (8.0)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: High - Privileges Required: Low - User Interaction: Required - Scope: Changed - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here.CVE-2021-22118
### Vulnerable Library - spring-web-5.2.2.RELEASE.jarSpring Web
Library home page: https://github.com/spring-projects/spring-framework
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/spring-web/5.2.2.RELEASE/spring-web-5.2.2.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-web-2.2.2.RELEASE.jar - :x: **spring-web-5.2.2.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsIn Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux application is vulnerable to a privilege escalation: by (re)creating the temporary storage directory, a locally authenticated malicious user can read or modify files that have been uploaded to the WebFlux application, or overwrite arbitrary files with multipart request data.
Publish Date: 2021-05-27
URL: CVE-2021-22118
### CVSS 3 Score Details (7.8)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Local - Attack Complexity: Low - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://tanzu.vmware.com/security/cve-2021-22118
Release Date: 2021-05-27
Fix Resolution: org.springframework:spring-web:5.2.15,5.3.7
CVE-2022-2053
### Vulnerable Library - undertow-core-2.0.28.Final.jarUndertow
Library home page: http://www.jboss.org/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/io/undertow/undertow-core/2.0.28.Final/undertow-core-2.0.28.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-undertow-2.2.2.RELEASE.jar - :x: **undertow-core-2.0.28.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsWhen a POST request comes through AJP and the request exceeds the max-post-size limit (maxEntitySize), Undertow's AjpServerRequestConduit implementation closes a connection without sending any response to the client/proxy. This behavior results in that a front-end proxy marking the backend worker (application server) as an error state and not forward requests to the worker for a while. In mod_cluster, this continues until the next STATUS request (10 seconds intervals) from the application server updates the server state. So, in the worst case, it can result in "All workers are in error state" and mod_cluster responds "503 Service Unavailable" for a while (up to 10 seconds). In mod_proxy_balancer, it does not forward requests to the worker until the "retry" timeout passes. However, luckily, mod_proxy_balancer has "forcerecovery" setting (On by default; this parameter can force the immediate recovery of all workers without considering the retry parameter of the workers if all workers of a balancer are in error state.). So, unlike mod_cluster, mod_proxy_balancer does not result in responding "503 Service Unavailable". An attacker could use this behavior to send a malicious request and trigger server errors, resulting in DoS (denial of service). This flaw was fixed in Undertow 2.2.19.Final, Undertow 2.3.0.Alpha2.
Publish Date: 2022-08-05
URL: CVE-2022-2053
### CVSS 3 Score Details (7.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://github.com/advisories/GHSA-95rf-557x-44g5
Release Date: 2022-08-05
Fix Resolution: io.undertow:undertow-core:2.2.19.Final
CVE-2020-5398
### Vulnerable Library - spring-web-5.2.2.RELEASE.jarSpring Web
Library home page: https://github.com/spring-projects/spring-framework
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/spring-web/5.2.2.RELEASE/spring-web-5.2.2.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-web-2.2.2.RELEASE.jar - :x: **spring-web-5.2.2.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsIn Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerable to a reflected file download (RFD) attack when it sets a "Content-Disposition" header in the response where the filename attribute is derived from user supplied input.
Publish Date: 2020-01-17
URL: CVE-2020-5398
### CVSS 3 Score Details (7.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: High - Privileges Required: None - User Interaction: Required - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://pivotal.io/security/cve-2020-5398
Release Date: 2020-01-17
Fix Resolution: org.springframework:spring-web:5.0.16.RELEASE,org.springframework:spring-web:5.1.13.RELEASE,org.springframework:spring-web:5.2.3.RELEASE
CVE-2020-27782
### Vulnerable Library - undertow-core-2.0.28.Final.jarUndertow
Library home page: http://www.jboss.org/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/io/undertow/undertow-core/2.0.28.Final/undertow-core-2.0.28.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-undertow-2.2.2.RELEASE.jar - :x: **undertow-core-2.0.28.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability. This affects Undertow 2.1.5.SP1, 2.0.33.SP2, and 2.2.3.SP1.
Publish Date: 2021-02-23
URL: CVE-2020-27782
### CVSS 3 Score Details (7.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://github.com/advisories/GHSA-rhcw-wjcm-9h6g
Release Date: 2021-02-23
Fix Resolution: io.undertow:undertow-core:2.0.33.Final,2.1.5.Final
CVE-2021-3690
### Vulnerable Library - undertow-websockets-jsr-2.0.28.Final.jarUndertow
Library home page: http://www.jboss.org/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/io/undertow/undertow-websockets-jsr/2.0.28.Final/undertow-websockets-jsr-2.0.28.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-undertow-2.2.2.RELEASE.jar - :x: **undertow-websockets-jsr-2.0.28.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA flaw was found in Undertow. A buffer leak on the incoming WebSocket PONG message may lead to memory exhaustion. This flaw allows an attacker to cause a denial of service. The highest threat from this vulnerability is availability.
Publish Date: 2022-08-23
URL: CVE-2021-3690
### CVSS 3 Score Details (7.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://issues.redhat.com/browse/UNDERTOW-1935
Release Date: 2022-08-23
Fix Resolution: io.undertow:undertow-websockets-jsr:2.0.40.Final, 2.2.10.Final
CVE-2020-10705
### Vulnerable Library - undertow-core-2.0.28.Final.jarUndertow
Library home page: http://www.jboss.org/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/io/undertow/undertow-core/2.0.28.Final/undertow-core-2.0.28.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-undertow-2.2.2.RELEASE.jar - :x: **undertow-core-2.0.28.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA flaw was discovered in Undertow in versions before Undertow 2.1.1.Final where certain requests to the "Expect: 100-continue" header may cause an out of memory error. This flaw may potentially lead to a denial of service.
Publish Date: 2020-06-10
URL: CVE-2020-10705
### CVSS 3 Score Details (7.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10705
Release Date: 2020-06-10
Fix Resolution: io.undertow:undertow-core:2.1.1.Final
CVE-2021-3859
### Vulnerable Library - undertow-core-2.0.28.Final.jarUndertow
Library home page: http://www.jboss.org/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/io/undertow/undertow-core/2.0.28.Final/undertow-core-2.0.28.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-undertow-2.2.2.RELEASE.jar - :x: **undertow-core-2.0.28.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks.
Publish Date: 2022-08-26
URL: CVE-2021-3859
### CVSS 3 Score Details (7.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Release Date: 2022-08-26
Fix Resolution: io.undertow:undertow-core:2.2.15.Final
CVE-2020-25638
### Vulnerable Library - hibernate-core-5.4.9.Final.jarHibernate's core ORM functionality
Library home page: http://hibernate.org/orm
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/hibernate/hibernate-core/5.4.9.Final/hibernate-core-5.4.9.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-data-jpa-2.2.2.RELEASE.jar - :x: **hibernate-core-5.4.9.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further attacks. The highest threat from this vulnerability is to data confidentiality and integrity.
Publish Date: 2020-12-02
URL: CVE-2020-25638
### CVSS 3 Score Details (7.4)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: High - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: None
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://in.relation.to/2020/11/19/hibernate-orm-5424-final-release/
Release Date: 2020-12-02
Fix Resolution: org.hibernate:hibernate-core:5.3.20.Final,5.4.24.Final
WS-2017-3767
### Vulnerable Library - spring-security-web-5.2.1.RELEASE.jarspring-security-web
Library home page: http://spring.io/spring-security
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/security/spring-security-web/5.2.1.RELEASE/spring-security-web-5.2.1.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-security-2.2.2.RELEASE.jar - :x: **spring-security-web-5.2.1.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsCross-Site Request Forgery (CSRF) vulnerability was found in spring-security before 4.2.15, 5.0.15, 5.1.9, 5.2.3, and 5.3.1. SwitchUserFilter responds to all HTTP methods, making it vulnerable to CSRF attacks.
Publish Date: 2017-01-03
URL: WS-2017-3767
### CVSS 3 Score Details (6.6)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: Required - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: Low - Integrity Impact: Low - Availability Impact: Low
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Release Date: 2017-01-03
Fix Resolution: org.springframework.security:spring-security-web:4.2.15,5.0.15,5.1.9,5.2.3,5.3.1
CVE-2020-10719
### Vulnerable Library - undertow-core-2.0.28.Final.jarUndertow
Library home page: http://www.jboss.org/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/io/undertow/undertow-core/2.0.28.Final/undertow-core-2.0.28.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-undertow-2.2.2.RELEASE.jar - :x: **undertow-core-2.0.28.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling.
Publish Date: 2020-05-26
URL: CVE-2020-10719
### CVSS 3 Score Details (6.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: Low - Integrity Impact: Low - Availability Impact: None
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10719
Release Date: 2020-05-26
Fix Resolution: io.undertow:undertow-core:2.1.1.Final
CVE-2019-14900
### Vulnerable Library - hibernate-core-5.4.9.Final.jarHibernate's core ORM functionality
Library home page: http://hibernate.org/orm
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/hibernate/hibernate-core/5.4.9.Final/hibernate-core-5.4.9.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-data-jpa-2.2.2.RELEASE.jar - :x: **hibernate-core-5.4.9.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA flaw was found in Hibernate ORM in versions before 5.3.18, 5.4.18 and 5.5.0.Beta1. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SELECT or GROUP BY parts of the query. This flaw could allow an attacker to access unauthorized information or possibly conduct further attacks.
Publish Date: 2020-07-06
URL: CVE-2019-14900
### CVSS 3 Score Details (6.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: None - Availability Impact: None
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14900
Release Date: 2020-07-06
Fix Resolution: org.hibernate:hibernate-core:5.4.18.Final
CVE-2022-22950
### Vulnerable Library - spring-expression-5.2.2.RELEASE.jarSpring Expression Language (SpEL)
Library home page: https://github.com/spring-projects/spring-framework
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/spring-expression/5.2.2.RELEASE/spring-expression-5.2.2.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-security-2.2.2.RELEASE.jar - spring-security-web-5.2.1.RELEASE.jar - :x: **spring-expression-5.2.2.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability Detailsn Spring Framework versions 5.3.0 - 5.3.16 and older unsupported versions, it is possible for a user to provide a specially crafted SpEL expression that may cause a denial of service condition.
Publish Date: 2022-04-01
URL: CVE-2022-22950
### CVSS 3 Score Details (6.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://tanzu.vmware.com/security/cve-2022-22950
Release Date: 2022-04-01
Fix Resolution: org.springframework:spring-expression:5.2.20,5.3.17
CVE-2020-5421
### Vulnerable Library - spring-web-5.2.2.RELEASE.jarSpring Web
Library home page: https://github.com/spring-projects/spring-framework
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/spring-web/5.2.2.RELEASE/spring-web-5.2.2.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-web-2.2.2.RELEASE.jar - :x: **spring-web-5.2.2.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsIn Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed depending on the browser used through the use of a jsessionid path parameter.
Publish Date: 2020-09-19
URL: CVE-2020-5421
### CVSS 3 Score Details (6.5)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: High - Privileges Required: Low - User Interaction: Required - Scope: Changed - Impact Metrics: - Confidentiality Impact: Low - Integrity Impact: High - Availability Impact: None
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://tanzu.vmware.com/security/cve-2020-5421
Release Date: 2020-09-19
Fix Resolution: org.springframework:spring-web:4.3.29,5.0.19,5.1.18,5.2.9
WS-2016-7107
### Vulnerable Library - spring-security-web-5.2.1.RELEASE.jarspring-security-web
Library home page: http://spring.io/spring-security
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/security/spring-security-web/5.2.1.RELEASE/spring-security-web-5.2.1.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-security-2.2.2.RELEASE.jar - :x: **spring-security-web-5.2.1.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsCSRF tokens in Spring Security are vulnerable to a breach attack. Spring Security always returns the same CSRF token to the browser.
Publish Date: 2016-08-02
URL: WS-2016-7107
### CVSS 3 Score Details (5.9)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: High - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: None - Availability Impact: None
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://nvd.nist.gov/vuln/detail/WS-2016-7107
Release Date: 2016-08-02
Fix Resolution: org.springframework.security:spring-security-web - 5.2.14.RELEASE,5.3.13.RELEASE,5.5.4,5.4.10
WS-2020-0293
### Vulnerable Library - spring-security-web-5.2.1.RELEASE.jarspring-security-web
Library home page: http://spring.io/spring-security
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/security/spring-security-web/5.2.1.RELEASE/spring-security-web-5.2.1.RELEASE.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-security-2.2.2.RELEASE.jar - :x: **spring-security-web-5.2.1.RELEASE.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsSpring Security before 5.2.9, 5.3.7, and 5.4.3 vulnerable to side-channel attacks. Vulnerable versions of Spring Security don't use constant time comparisons for CSRF tokens.
Publish Date: 2020-12-17
URL: WS-2020-0293
### CVSS 3 Score Details (5.9)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: High - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: None - Availability Impact: None
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Release Date: 2020-12-17
Fix Resolution: org.springframework.security:spring-security-web:5.2.9,5.3.7,5.4.3
CVE-2021-3597
### Vulnerable Library - undertow-core-2.0.28.Final.jarUndertow
Library home page: http://www.jboss.org/
Path to dependency file: /webgoat-integration-tests/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/io/undertow/undertow-core/2.0.28.Final/undertow-core-2.0.28.Final.jar
Dependency Hierarchy: - webwolf-v8.0.0-SNAPSHOT.jar (Root Library) - spring-boot-starter-undertow-2.2.2.RELEASE.jar - :x: **undertow-core-2.0.28.Final.jar** (Vulnerable Library)
Found in HEAD commit: 01656d525944c74e9aec808166ddb4ada4c0ee31
Found in base branch: add_test_clientside_filtering
### Vulnerability DetailsA flaw was found in undertow. The HTTP2SourceChannel fails to write the final frame under some circumstances, resulting in a denial of service. The highest threat from this vulnerability is availability. This flaw affects Undertow versions prior to 2.0.35.SP1, prior to 2.2.6.SP1, prior to 2.2.7.SP1, prior to 2.0.36.SP1, prior to 2.2.9.Final and prior to 2.0.39.Final.
Publish Date: 2022-05-24
URL: CVE-2021-3597
### CVSS 3 Score Details (5.9)Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: High - Privileges Required: None - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
For more information on CVSS3 Scores, click here. ### Suggested FixType: Upgrade version
Origin: https://bugzilla.redhat.com/show_bug.cgi?id=1970930
Release Date: 2022-05-24
Fix Resolution: io.undertow:undertow-core:2.2.8.Final