admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2021/CVE-2021-376xx/CVE-2021-37632.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

136 lines
6.1 KiB
JSON
Raw Blame History

{
"id": "CVE-2021-37632",
"sourceIdentifier": "security-advisories@github.com",
"published": "2021-08-05T21:15:12.687",
"lastModified": "2021-08-17T15:00:10.767",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "SuperMartijn642's Config Lib is a library used by a number of mods for the game Minecraft. The versions of SuperMartijn642's Config Lib between 1.0.4 and 1.0.8 are affected by a vulnerability and can be exploited on both servers and clients. Using SuperMartijn642's Config Lib, servers will send a packet to clients with the server's config values. In order to read `enum` values from the packet data, `ObjectInputStream#readObject` is used. `ObjectInputStream#readObject` will instantiate a class based on the input data. Since, the packet data is not validated before `ObjectInputStream#readObject` is called, an attacker can instantiate any class by sending a malicious packet. If a suitable class is found, the vulnerability can lead to a number of exploits, including remote code execution. Although the vulnerable packet is typically only send from server to client, it can theoretically also be send from client to server. This means both clients and servers running SuperMartijn642's Config Lib between 1.0.4 and 1.0.8 are vulnerable. The vulnerability has been patched in SuperMartijn642's Config lib 1.0.9. Both, players and server owners, should update to 1.0.9 or higher."
},
{
"lang": "es",
"value": "SuperMartijn642's Config Lib es una biblioteca usada por varios mods para el juego Minecraft. Las versiones de SuperMartijn642's Config Lib entre 1.0.4 y 1.0.8, est\u00e1n afectadas por una vulnerabilidad y pueden ser explotadas tanto en servidores como en clientes. Usando Config Lib de SuperMartijn642, los servidores enviar\u00e1n un paquete a clientes con los valores de configuraci\u00f3n del servidor. Para leer los valores \"enum\" de los datos del paquete, es usado \"ObjectInputStream#readObject\". \"ObjectInputStream#readObject\" instanciar\u00e1 una clase basada en los datos de entrada. Como los datos del paquete no se comprueban antes de llamar a \"ObjectInputStream#readObject\", un atacante puede instanciar cualquier clase mediante el env\u00edo de un paquete malicioso. Si se encuentra una clase adecuada, la vulnerabilidad puede conllevar a una serie de explotaciones, incluyendo una ejecuci\u00f3n de c\u00f3digo remota. Aunque el paquete vulnerable normalmente s\u00f3lo se env\u00eda del servidor al cliente, te\u00f3ricamente tambi\u00e9n puede enviarse del cliente al servidor. Esto significa que tanto los clientes como los servidores que ejecutan el Config Lib de SuperMartijn642 entre 1.0.4 y 1.0.8 son vulnerables. La vulnerabilidad ha sido parcheada en la Config lib 1.0.9 de SuperMartijn642. Tanto los jugadores como los propietarios de servidores deben actualizar a la versi\u00f3n 1.0.9 o superior"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.2,
"impactScore": 5.9
},
{
"source": "security-advisories@github.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.2,
"impactScore": 5.9
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-502"
}
]
},
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-502"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:config_lib_project:config_lib:*:*:*:*:*:*:*:*",
"versionStartIncluding": "1.0.4",
"versionEndExcluding": "1.0.9",
"matchCriteriaId": "418BE337-88A4-42B1-8D51-16D3E1815B58"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/SuperMartijn642/SuperMartijn642sConfigLib/security/advisories/GHSA-f4r5-w453-2jx6",
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink