Vulnerability Description
In Eclipse Jetty versions 9.4.0 through 9.4.8, when using the optional Jetty provided FileSessionDataStore for persistent storage of HttpSession details, it is possible for a malicious user to access/hijack other HttpSessions and even delete unmatched HttpSessions present in the FileSystem's storage for the FileSessionDataStore.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Eclipse | Jetty | >= 9.4.0, <= 9.4.8 |
| Netapp | E-Series Santricity Management Plug-Ins | - |
| Netapp | E-Series Santricity Os Controller | >= 11.0, <= 11.40 |
| Netapp | E-Series Santricity Web Services Proxy | - |
| Netapp | Element Software | - |
| Netapp | Hyper Converged Infrastructure | - |
| Netapp | Oncommand System Manager | >= 3.0.0, <= 3.1.3 |
| Netapp | Oncommand Unified Manager | - |
| Netapp | Santricity Cloud Connector | - |
| Netapp | Snap Creator Framework | - |
| Netapp | Snapcenter | - |
| Netapp | Snapmanager | - |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1041194Third Party AdvisoryVDB Entry
- https://bugs.eclipse.org/bugs/show_bug.cgi?id=536018Issue TrackingVendor Advisory
- https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab
- https://security.netapp.com/advisory/ntap-20181014-0001/Third Party Advisory
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
- http://www.securitytracker.com/id/1041194Third Party AdvisoryVDB Entry
- https://bugs.eclipse.org/bugs/show_bug.cgi?id=536018Issue TrackingVendor Advisory
- https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab
- https://security.netapp.com/advisory/ntap-20181014-0001/Third Party Advisory
- https://www.oracle.com/security-alerts/cpuoct2020.html
- https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
FAQ
What is CVE-2018-12538?
CVE-2018-12538 is a vulnerability with a CVSS score of 8.8 (HIGH). In Eclipse Jetty versions 9.4.0 through 9.4.8, when using the optional Jetty provided FileSessionDataStore for persistent storage of HttpSession details, it is possible for a malicious user to access/...
How severe is CVE-2018-12538?
CVE-2018-12538 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-12538?
Check the references section above for vendor advisories and patch information. Affected products include: Eclipse Jetty, Netapp E-Series Santricity Management Plug-Ins, Netapp E-Series Santricity Os Controller, Netapp E-Series Santricity Web Services Proxy, Netapp Element Software.