CVE-2017-7536 — HIGH (7.0) — White Hats Nepal

Q: How severe is CVE-2017-7536?

CVE-2017-7536 has been rated HIGH with a CVSS base score of 7.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2017-7536?

Check the references section above for vendor advisories and patch information. Affected products include: Redhat Hibernate Validator, Redhat Satellite, Redhat Satellite Capsule, Redhat Jboss Enterprise Application Platform, Redhat Enterprise Linux.

Vulnerability Description

In Hibernate Validator 5.2.x before 5.2.5 final, 5.3.x, and 5.4.x, it was found that when the security manager's reflective permissions, which allows it to access the private members of the class, are granted to Hibernate Validator, a potential privilege escalation can occur. By allowing the calling code to access those private members without the permission an attacker may be able to validate an invalid instance and access the private member value via ConstraintViolation#getInvalidValue().

CVSS Score

7.0

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Redhat	Hibernate Validator	>= 5.2.0, < 5.2.5
Redhat	Satellite	6.4
Redhat	Satellite Capsule	6.4
Redhat	Jboss Enterprise Application Platform	6.0.0
Redhat	Enterprise Linux	5.0
Redhat	Virtualization	4.0
Redhat	Virtualization Host	4.0

Related Weaknesses (CWE)

CWE-592 CWE-470

References

http://www.securityfocus.com/bid/101048Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1039744Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2017:2808Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:2809Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:2810Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:2811Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:3141Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:3454Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:3455Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:3456Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:3458Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:2740Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:2741Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:2742Vendor Advisory
https://access.redhat.com/errata/RHSA-2018:2743Vendor Advisory

FAQ

What is CVE-2017-7536?

CVE-2017-7536 is a vulnerability with a CVSS score of 7.0 (HIGH). In Hibernate Validator 5.2.x before 5.2.5 final, 5.3.x, and 5.4.x, it was found that when the security manager's reflective permissions, which allows it to access the private members of the class, are...

How severe is CVE-2017-7536?

CVE-2017-7536 has been rated HIGH with a CVSS base score of 7.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-7536?

Check the references section above for vendor advisories and patch information. Affected products include: Redhat Hibernate Validator, Redhat Satellite, Redhat Satellite Capsule, Redhat Jboss Enterprise Application Platform, Redhat Enterprise Linux.