Description

Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with XMLBeam 1.4.14 or earlier versions, contains a property binder vulnerability caused by improper restriction of XML external entity references as underlying library XMLBeam does not restrict external reference expansion. An unauthenticated remote malicious user can supply specially crafted request parameters against Spring Data's projection-based request payload binding to access arbitrary files on the system.

Remediation

References

https://access.redhat.com/errata/RHSA-2018:1809

https://access.redhat.com/errata/RHSA-2018:3768

https://pivotal.io/security/cve-2018-1259

https://www.oracle.com/security-alerts/cpujul2022.html

Related Vulnerabilities

CVE-2016-10559 Vulnerability in npm package selenium-download

CVE-2017-16126 Vulnerability in npm package botbait

CVE-2016-10582 Vulnerability in npm package closurecompiler

CVE-2020-2114 Vulnerability in maven package org.jenkins-ci.plugins:s3

CVE-2021-21422 Vulnerability in npm package mongo-express

Severity

High

Classification

CWE-611 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Third Party Advisory Vendor Advisory