CVE-2023-36479 — LOW (3.5) — White Hats Nepal

Q: How severe is CVE-2023-36479?

CVE-2023-36479 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-36479?

Check the references section above for vendor advisories and patch information. Affected products include: Eclipse Jetty, Debian Debian Linux.

Vulnerability Description

Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user sends a request to a org.eclipse.jetty.servlets.CGI Servlet for a binary with a space in its name, the servlet will escape the command by wrapping it in quotation marks. This wrapped command, plus an optional command prefix, will then be executed through a call to Runtime.exec. If the original binary name provided by the user contains a quotation mark followed by a space, the resulting command line will contain multiple tokens instead of one. This issue was patched in version 9.4.52, 10.0.16, 11.0.16 and 12.0.0-beta2.

CVSS Score

3.5

LOW

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Eclipse	Jetty	>= 9.0.0, < 9.4.52
Debian	Debian Linux	10.0

Related Weaknesses (CWE)

CWE-149

References

https://github.com/eclipse/jetty.project/pull/9516Patch
https://github.com/eclipse/jetty.project/pull/9888Patch
https://github.com/eclipse/jetty.project/pull/9889Patch
https://github.com/eclipse/jetty.project/security/advisories/GHSA-3gh6-v5v9-6v9jExploitPatchVendor Advisory
https://lists.debian.org/debian-lts-announce/2023/09/msg00039.htmlMailing ListThird Party Advisory
https://www.debian.org/security/2023/dsa-5507Mailing ListThird Party Advisory
https://github.com/eclipse/jetty.project/pull/9516Patch
https://github.com/eclipse/jetty.project/pull/9888Patch
https://github.com/eclipse/jetty.project/pull/9889Patch
https://github.com/eclipse/jetty.project/security/advisories/GHSA-3gh6-v5v9-6v9jExploitPatchVendor Advisory
https://lists.debian.org/debian-lts-announce/2023/09/msg00039.htmlMailing ListThird Party Advisory
https://www.debian.org/security/2023/dsa-5507Mailing ListThird Party Advisory

FAQ

What is CVE-2023-36479?

CVE-2023-36479 is a vulnerability with a CVSS score of 3.5 (LOW). Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user send...

How severe is CVE-2023-36479?

CVE-2023-36479 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-36479?

Check the references section above for vendor advisories and patch information. Affected products include: Eclipse Jetty, Debian Debian Linux.