CVE-2017-5641 — CRITICAL (9.8)

Q: How severe is CVE-2017-5641?

CVE-2017-5641 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Q: Is there a patch for CVE-2017-5641?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Flex Blazeds, Hp Xp Command View Advanced Edition.

Vulnerability Description

Previous versions of Apache Flex BlazeDS (4.7.2 and earlier) did not restrict which types were allowed for AMF(X) object deserialization by default. During the deserialization process code is executed that for several known types has undesired side-effects. Other, unknown types may also exhibit such behaviors. One vector in the Java standard library exists that allows an attacker to trigger possibly further exploitable Java deserialization of untrusted data. Other known vectors in third party libraries can be used to trigger remote code execution.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Apache	Flex Blazeds	<= 4.7.2
Hp	Xp Command View Advanced Edition	< 8.5.3-00

Related Weaknesses (CWE)

CWE-502

References

http://mail-archives.apache.org/mod_mbox/flex-dev/201703.mbox/%3C6B86C8D0-6E36-4
http://www.securityfocus.com/bid/97383Broken Link
http://www.securitytracker.com/id/1038273Broken Link
https://issues.apache.org/jira/browse/FLEX-35290Issue TrackingVendor Advisory
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpeThird Party Advisory
https://www.kb.cert.org/vuls/id/307983Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-22-506/Third Party AdvisoryVDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-22-507/Third Party AdvisoryVDB Entry
http://mail-archives.apache.org/mod_mbox/flex-dev/201703.mbox/%3C6B86C8D0-6E36-4
http://www.securityfocus.com/bid/97383Broken Link
http://www.securitytracker.com/id/1038273Broken Link
https://issues.apache.org/jira/browse/FLEX-35290Issue TrackingVendor Advisory
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpeThird Party Advisory
https://www.kb.cert.org/vuls/id/307983Third Party AdvisoryUS Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-22-506/Third Party AdvisoryVDB Entry

FAQ

What is CVE-2017-5641?

CVE-2017-5641 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Previous versions of Apache Flex BlazeDS (4.7.2 and earlier) did not restrict which types were allowed for AMF(X) object deserialization by default. During the deserialization process code is executed...

How severe is CVE-2017-5641?

CVE-2017-5641 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2017-5641?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Flex Blazeds, Hp Xp Command View Advanced Edition.