diff --git a/2017/3xxx/CVE-2017-3199.json b/2017/3xxx/CVE-2017-3199.json index 71e224bbe35..e02e0532da4 100644 --- a/2017/3xxx/CVE-2017-3199.json +++ b/2017/3xxx/CVE-2017-3199.json @@ -1,18 +1,78 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "cve@mitre.org", - "ID" : "CVE-2017-3199", - "STATE" : "RESERVED" + "CVE_data_meta": { + "ASSIGNER": "cert@cert.org", + "ID": "CVE-2017-3199", + "STATE": "PUBLIC", + "TITLE": "GraniteDS, version 3.1.1.GA, Action Message Format (AMF3) Java implementation is vulnerable to insecure deserialization" }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Framework", + "version": { + "version_data": [ + { + "affected": "=", + "version_name": "3.1.1.GA", + "version_value": "3.1.1.GA" + } + ] + } + } + ] + }, + "vendor_name": "GraniteDS" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ { - "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "lang": "eng", + "value": "The Java implementation of GraniteDS, version 3.1.1.GA, AMF3 deserializers derives class instances from java.io.Externalizable rather than the AMF3 specification's recommendation of flash.utils.IExternalizable. A remote attacker with the ability to spoof or control an RMI server connection may be able to send serialized Java objects that execute arbitrary code when deserialized." } ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-502: Deserialization of Untrusted Data" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "VU#307983", + "refsource": "CERT-VN", + "url": "https://www.kb.cert.org/vuls/id/307983" + }, + { + "name": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution", + "refsource": "MISC", + "url": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution" + }, + { + "name": "https://codewhitesec.blogspot.com/2017/04/amf.html", + "refsource": "MISC", + "url": "https://codewhitesec.blogspot.com/2017/04/amf.html" + } + ] + }, + "source": { + "discovery": "UNKNOWN" } -} +} \ No newline at end of file diff --git a/2017/3xxx/CVE-2017-3200.json b/2017/3xxx/CVE-2017-3200.json index f4d58fb088f..5e0bb0067e5 100644 --- a/2017/3xxx/CVE-2017-3200.json +++ b/2017/3xxx/CVE-2017-3200.json @@ -1,18 +1,78 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "cve@mitre.org", - "ID" : "CVE-2017-3200", - "STATE" : "RESERVED" + "CVE_data_meta": { + "ASSIGNER": "cert@cert.org", + "ID": "CVE-2017-3200", + "STATE": "PUBLIC", + "TITLE": "The implementation of Action Message Format (AMF3) deserializers in GraniteDS, version 3.1.1.GA, may allow instantiation of arbitrary classes due to improper code control" }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Framework", + "version": { + "version_data": [ + { + "affected": "=", + "version_name": "3.1.1.G", + "version_value": "3.1.1.G" + } + ] + } + } + ] + }, + "vendor_name": "GraniteDS" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ { - "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "lang": "eng", + "value": "The Java implementation of AMF3 deserializers used in GraniteDS, version 3.1.1.G, may allow instantiation of arbitrary classes via their public parameter-less constructor and subsequently call arbitrary Java Beans setter methods. The ability to exploit this vulnerability depends on the availability of classes in the class path that make use of deserialization. A remote attacker with the ability to spoof or control information may be able to send serialized Java objects with pre-set properties that result in arbitrary code execution when deserialized." } ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-913: Improper Control of Dynamically-Managed Code Resources" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "VU#307983", + "refsource": "CERT-VN", + "url": "https://www.kb.cert.org/vuls/id/307983" + }, + { + "name": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution", + "refsource": "MISC", + "url": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution" + }, + { + "name": "https://codewhitesec.blogspot.com/2017/04/amf.html", + "refsource": "MISC", + "url": "https://codewhitesec.blogspot.com/2017/04/amf.html" + } + ] + }, + "source": { + "discovery": "UNKNOWN" } -} +} \ No newline at end of file diff --git a/2017/3xxx/CVE-2017-3201.json b/2017/3xxx/CVE-2017-3201.json index de80e6644a8..078561c94bc 100644 --- a/2017/3xxx/CVE-2017-3201.json +++ b/2017/3xxx/CVE-2017-3201.json @@ -1,18 +1,78 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "cve@mitre.org", - "ID" : "CVE-2017-3201", - "STATE" : "RESERVED" + "CVE_data_meta": { + "ASSIGNER": "cert@cert.org", + "ID": "CVE-2017-3201", + "STATE": "PUBLIC", + "TITLE": "Flamingo amf-serializer by Exadel, version 2.2.0, Action Message Format (AMF3) Java implementation is vulnerable to insecure deserialization" }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Flamingo amf-serializer", + "version": { + "version_data": [ + { + "affected": "=", + "version_name": "2.2.0", + "version_value": "2.2.0" + } + ] + } + } + ] + }, + "vendor_name": "Exadel" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ { - "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "lang": "eng", + "value": "The Java implementation of AMF3 deserializers used in Flamingo amf-serializer by Exadel, version 2.2.0 derives class instances from java.io.Externalizable rather than the AMF3 specification's recommendation of flash.utils.IExternalizable. A remote attacker with the ability to spoof or control an RMI server connection may be able to send serialized Java objects that execute arbitrary code when deserialized." } ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-502: Deserialization of Untrusted Data" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "VU#307983", + "refsource": "CERT-VN", + "url": "https://www.kb.cert.org/vuls/id/307983" + }, + { + "name": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution", + "refsource": "MISC", + "url": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution" + }, + { + "name": "https://codewhitesec.blogspot.com/2017/04/amf.html", + "refsource": "MISC", + "url": "https://codewhitesec.blogspot.com/2017/04/amf.html" + } + ] + }, + "source": { + "discovery": "UNKNOWN" } -} +} \ No newline at end of file diff --git a/2017/3xxx/CVE-2017-3202.json b/2017/3xxx/CVE-2017-3202.json index f0d109c2c08..844da35db54 100644 --- a/2017/3xxx/CVE-2017-3202.json +++ b/2017/3xxx/CVE-2017-3202.json @@ -1,18 +1,78 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "cve@mitre.org", - "ID" : "CVE-2017-3202", - "STATE" : "RESERVED" + "CVE_data_meta": { + "ASSIGNER": "cert@cert.org", + "ID": "CVE-2017-3202", + "STATE": "PUBLIC", + "TITLE": "The implementation of Action Message Format (AMF3) deserializers in Flamingo amf-serializer by Exadel, version 2.2.0, may allow instantiation of arbitrary classes due to improper code control" }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Flamingo amf-serializer", + "version": { + "version_data": [ + { + "affected": "=", + "version_name": "2.2.0", + "version_value": "2.2.0" + } + ] + } + } + ] + }, + "vendor_name": "Exadel" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ { - "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "lang": "eng", + "value": "The Java implementation of AMF3 deserializers used in Flamingo amf-serializer by Exadel, version 2.2.0, may allow instantiation of arbitrary classes via their public parameter-less constructor and subsequently call arbitrary Java Beans setter methods. The ability to exploit this vulnerability depends on the availability of classes in the class path that make use of deserialization. A remote attacker with the ability to spoof or control information may be able to send serialized Java objects with pre-set properties that result in arbitrary code execution when deserialized." } ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-913: Improper Control of Dynamically-Managed Code Resources" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "VU#307983", + "refsource": "CERT-VN", + "url": "https://www.kb.cert.org/vuls/id/307983" + }, + { + "name": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution", + "refsource": "MISC", + "url": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution" + }, + { + "name": "https://codewhitesec.blogspot.com/2017/04/amf.html", + "refsource": "MISC", + "url": "https://codewhitesec.blogspot.com/2017/04/amf.html" + } + ] + }, + "source": { + "discovery": "UNKNOWN" } -} +} \ No newline at end of file diff --git a/2017/3xxx/CVE-2017-3203.json b/2017/3xxx/CVE-2017-3203.json index bcfaf60989a..12ba40a60fb 100644 --- a/2017/3xxx/CVE-2017-3203.json +++ b/2017/3xxx/CVE-2017-3203.json @@ -1,18 +1,83 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "cve@mitre.org", - "ID" : "CVE-2017-3203", - "STATE" : "RESERVED" + "CVE_data_meta": { + "ASSIGNER": "cert@cert.org", + "ID": "CVE-2017-3203", + "STATE": "PUBLIC", + "TITLE": "Pivotal/Spring Spring-flex's Action Message Format (AMF3) Java implementation is vulnerable to insecure deserialization" }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Spring-flex", + "version": { + "version_data": [ + { + "affected": "=", + "version_name": "0", + "version_value": "0" + } + ] + } + } + ] + }, + "vendor_name": "Pivotal/Spring" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ { - "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "lang": "eng", + "value": "The Java implementations of AMF3 deserializers in Pivotal/Spring Spring-flex derive class instances from java.io.Externalizable rather than the AMF3 specification's recommendation of flash.utils.IExternalizable. A remote attacker with the ability to spoof or control an RMI server connection may be able to send serialized Java objects that execute arbitrary code when deserialized." } ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-502: Deserialization of Untrusted Data" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "VU#307983", + "refsource": "CERT-VN", + "url": "https://www.kb.cert.org/vuls/id/307983" + }, + { + "name": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution", + "refsource": "MISC", + "url": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution" + }, + { + "name": "https://codewhitesec.blogspot.com/2017/04/amf.html", + "refsource": "MISC", + "url": "https://codewhitesec.blogspot.com/2017/04/amf.html" + }, + { + "name": "97376", + "refsource": "BID", + "url": "https://www.securityfocus.com/bid/97376" + } + ] + }, + "source": { + "discovery": "UNKNOWN" } -} +} \ No newline at end of file diff --git a/2017/3xxx/CVE-2017-3206.json b/2017/3xxx/CVE-2017-3206.json index 1cea6605ad0..6e10534b35f 100644 --- a/2017/3xxx/CVE-2017-3206.json +++ b/2017/3xxx/CVE-2017-3206.json @@ -1,18 +1,78 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "cve@mitre.org", - "ID" : "CVE-2017-3206", - "STATE" : "RESERVED" + "CVE_data_meta": { + "ASSIGNER": "cert@cert.org", + "ID": "CVE-2017-3206", + "STATE": "PUBLIC", + "TITLE": "The Action Message Format (AMF3) deserializers used by Flamingo amf-serializer by Exadel, version 2.2.0, allows external entity references (XXEs) from XML documents embedded within AMF3 messages" }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Flamingo amf-serializer", + "version": { + "version_data": [ + { + "affected": "=", + "version_name": "2.2.0", + "version_value": "2.2.0" + } + ] + } + } + ] + }, + "vendor_name": "Exadel" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ { - "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "lang": "eng", + "value": "The Java implementation of AMF3 deserializers used by Flamingo amf-serializer by Exadel, version 2.2.0, allows external entity references (XXEs) from XML documents embedded within AMF3 messages. If the XML parsing is handled incorrectly it could potentially expose sensitive data on the server, denial of service, or server side request forgery. " } ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-611: Improper Restriction of XML External Entity Reference ('XXE')" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "VU#307983", + "refsource": "CERT-VN", + "url": "https://www.kb.cert.org/vuls/id/307983" + }, + { + "name": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution", + "refsource": "MISC", + "url": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution" + }, + { + "name": "https://codewhitesec.blogspot.com/2017/04/amf.html", + "refsource": "MISC", + "url": "https://codewhitesec.blogspot.com/2017/04/amf.html" + } + ] + }, + "source": { + "discovery": "UNKNOWN" } -} +} \ No newline at end of file diff --git a/2017/3xxx/CVE-2017-3207.json b/2017/3xxx/CVE-2017-3207.json index 8d3119b21d8..ff72d85930f 100644 --- a/2017/3xxx/CVE-2017-3207.json +++ b/2017/3xxx/CVE-2017-3207.json @@ -1,18 +1,78 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "cve@mitre.org", - "ID" : "CVE-2017-3207", - "STATE" : "RESERVED" + "CVE_data_meta": { + "ASSIGNER": "cert@cert.org", + "ID": "CVE-2017-3207", + "STATE": "PUBLIC", + "TITLE": "WebORB for Java by Midnight Coders, version 5.1.1.0, Action Message Format (AMF3) Java implementation is vulnerable to insecure deserialization" }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "WebORB for Java", + "version": { + "version_data": [ + { + "affected": "=", + "version_name": "5.1.1.0", + "version_value": "5.1.1.0" + } + ] + } + } + ] + }, + "vendor_name": "Midnight Coders" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ { - "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "lang": "eng", + "value": "The Java implementations of AMF3 deserializers in WebORB for Java by Midnight Coders, version 5.1.1.0, derive class instances from java.io.Externalizable rather than the AMF3 specification's recommendation of flash.utils.IExternalizable. A remote attacker with the ability to spoof or control an RMI server connection may be able to send serialized Java objects that execute arbitrary code when deserialized." } ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-502: Deserialization of Untrusted Data" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "VU#307983", + "refsource": "CERT-VN", + "url": "https://www.kb.cert.org/vuls/id/307983" + }, + { + "name": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution", + "refsource": "MISC", + "url": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution" + }, + { + "name": "https://codewhitesec.blogspot.com/2017/04/amf.html", + "refsource": "MISC", + "url": "https://codewhitesec.blogspot.com/2017/04/amf.html" + } + ] + }, + "source": { + "discovery": "UNKNOWN" } -} +} \ No newline at end of file diff --git a/2017/3xxx/CVE-2017-3208.json b/2017/3xxx/CVE-2017-3208.json index af094a8aad0..202fd70c571 100644 --- a/2017/3xxx/CVE-2017-3208.json +++ b/2017/3xxx/CVE-2017-3208.json @@ -1,18 +1,78 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "cve@mitre.org", - "ID" : "CVE-2017-3208", - "STATE" : "RESERVED" + "CVE_data_meta": { + "ASSIGNER": "cert@cert.org", + "ID": "CVE-2017-3208", + "STATE": "PUBLIC", + "TITLE": "The Action Message Format (AMF3) deserializers used by WebORB for Java by Midnight Coders, version 5.1.1.0, allows external entity references (XXEs) from XML documents embedded within AMF3 messages" }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "WebORB for Java", + "version": { + "version_data": [ + { + "affected": "=", + "version_name": "5.1.1.0", + "version_value": "5.1.1.0" + } + ] + } + } + ] + }, + "vendor_name": "Midnight Coders" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ { - "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "lang": "eng", + "value": "The Java implementation of AMF3 deserializers used by Flamingo amf-serializer by Exadel, version 2.2.0, allows external entity references (XXEs) from XML documents embedded within AMF3 messages. If the XML parsing is handled incorrectly it could potentially expose sensitive data on the server, denial of service, or server side request forgery. " } ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-611: Improper Restriction of XML External Entity Reference ('XXE')" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "VU#307983", + "refsource": "CERT-VN", + "url": "https://www.kb.cert.org/vuls/id/307983" + }, + { + "name": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution", + "refsource": "MISC", + "url": "http://www.securityweek.com/flaws-java-amf-libraries-allow-remote-code-execution" + }, + { + "name": "https://codewhitesec.blogspot.com/2017/04/amf.html", + "refsource": "MISC", + "url": "https://codewhitesec.blogspot.com/2017/04/amf.html" + } + ] + }, + "source": { + "discovery": "UNKNOWN" } -} +} \ No newline at end of file