Action not permitted
Modal body text goes here.
CVE-2013-4330
Vulnerability from cvelistv5
Published
2013-10-04 17:00
Modified
2024-08-06 16:38
Severity ?
EPSS score ?
Summary
Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including "$simple{}" in a CamelFileName message header to a (1) FILE or (2) FTP producer.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:38:02.021Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "54888",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/54888"
},
{
"name": "20130930 CVE-2013-4330: Apache Camel critical disclosure vulnerability",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2013/Sep/178"
},
{
"name": "RHSA-2013:1862",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-1862.html"
},
{
"name": "apache-camel-cve20134330-code-exec(87542)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87542"
},
{
"name": "RHSA-2014:0140",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0140.html"
},
{
"name": "RHSA-2014:0124",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0124.html"
},
{
"name": "RHSA-2014:0254",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0254.html"
},
{
"name": "97941",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/97941"
},
{
"name": "RHSA-2014:0245",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0245.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://camel.apache.org/security-advisories.data/CVE-2013-4330.txt.asc?version=1\u0026modificationDate=1380535446943"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://packetstormsecurity.com/files/123454/"
},
{
"name": "[camel-commits] 20190430 svn commit: r1044347 - in /websites/production/camel/content: cache/main.pageCache security-advisories.data/CVE-2019-0194.txt.asc security-advisories.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E"
},
{
"name": "[camel-commits] 20190524 svn commit: r1045395 - in /websites/production/camel/content: cache/main.pageCache security-advisories.data/CVE-2019-0188.txt.asc security-advisories.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2013-09-30T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-05-24T10:06:03",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "54888",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/54888"
},
{
"name": "20130930 CVE-2013-4330: Apache Camel critical disclosure vulnerability",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://seclists.org/fulldisclosure/2013/Sep/178"
},
{
"name": "RHSA-2013:1862",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2013-1862.html"
},
{
"name": "apache-camel-cve20134330-code-exec(87542)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87542"
},
{
"name": "RHSA-2014:0140",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0140.html"
},
{
"name": "RHSA-2014:0124",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0124.html"
},
{
"name": "RHSA-2014:0254",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0254.html"
},
{
"name": "97941",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/97941"
},
{
"name": "RHSA-2014:0245",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0245.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://camel.apache.org/security-advisories.data/CVE-2013-4330.txt.asc?version=1\u0026modificationDate=1380535446943"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://packetstormsecurity.com/files/123454/"
},
{
"name": "[camel-commits] 20190430 svn commit: r1044347 - in /websites/production/camel/content: cache/main.pageCache security-advisories.data/CVE-2019-0194.txt.asc security-advisories.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E"
},
{
"name": "[camel-commits] 20190524 svn commit: r1045395 - in /websites/production/camel/content: cache/main.pageCache security-advisories.data/CVE-2019-0188.txt.asc security-advisories.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4330",
"datePublished": "2013-10-04T17:00:00",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:38:02.021Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2013-4330\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2013-10-04T17:55:09.853\",\"lastModified\":\"2023-02-13T04:46:30.197\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \\\"$simple{}\\\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.\"},{\"lang\":\"es\",\"value\":\"Apache Camel anterior a la versi\u00f3n 2.9.7, 2.10.0 anterior a 2.10.7, 2.11.0 anterior a la versi\u00f3n 2.11.2, y 2.12.0 permite a atacantes remotos ejecutar expresiones de lenguaje arbitrarias incluyendo \\\"$simple{}\\\" en una cabecera del mensaje CamelFileName a un productor (1) FILE o (2) FTP.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\",\"baseScore\":6.8},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.9.6\",\"matchCriteriaId\":\"48621B96-5E93-45D8-95AD-8D3914C34C55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B06E9C0-DB2D-41D6-98C4-93D973929523\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1BC313E-5651-4FBB-B9E6-E66DBA0139D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83727178-A7C0-4C88-A148-E522B25A8300\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"139F899A-6652-42C2-8729-F28C63B60DBA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D65D943-3954-4C65-BCFE-993ABE20136B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2ECABA1F-7D64-4272-AA2E-801C9C5CFE67\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C03AED3D-FA8B-4730-B9DA-CFFCEF29A891\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3D7D5F8-89C1-4CFD-8959-E50F0AF50DD0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1E1D4FA-C1D6-44E9-9326-DDFD16DE9ECF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8735662-1424-4F93-B3A3-8CB1D42F953F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:1.6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"506DFDFF-1712-4B4A-814C-C8CAFB7B2EF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4EA86F9-21F1-4FB1-9412-A0BC76190C24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.0.0:milestone1:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEFC3427-C311-4DC3-BFF7-0EE28706F729\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.0.0:milestone2:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C4B2BB5-1535-45A3-9FB1-0B4E6D93234B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.0.0:milestone3:*:*:*:*:*:*\",\"matchCriteriaId\":\"5BD846E7-8B3D-42D9-AA9C-26F2F9ACCE1D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"735DED49-ECF3-4DFE-8BF6-D47A9BA76AC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9C643FE-F7C2-422C-8553-656A1BAE73DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D23DD3D7-4653-4345-8844-CF80159811E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"992D2E07-4054-49AB-951D-8B51FFAEAC24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23BDA52E-088D-4D29-83AD-1D0C49A6AD40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C7F8143-7907-404B-8450-29B8D0993BEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"923393A5-5B57-426E-96FD-08F47A18CC68\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3B5D10E-A4A0-42AB-B6A1-7B4B433B75BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AE84D0D4-105F-4CD0-91ED-449508386AF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80E701F1-5E53-44F1-8781-D37351A319F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DE63834-D84A-45C0-96CB-4EC4258E1C0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1A6411F-679F-4B6C-9370-6D4D97C05256\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1D435FE-6266-4F3D-A17B-8611E005332C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89CE83EA-1DFC-4739-A8CB-2F514664D4D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA7F756F-3D1B-477B-B0D5-F3916EC8705E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.8.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D02F8D5-84BA-49C5-89BB-FD8E81AFEA90\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"234661BC-ADFD-4580-A07B-B79BA620EB6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.8.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"731A1E0D-04E8-47DA-AFF1-25DCBEA458C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.8.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47E8229D-2B40-4808-9B7C-867ABCE9F4EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0D0B86A-7190-494B-B696-694FDB6B7736\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.9.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE36D07F-3AA8-4B4E-872D-183D855734D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.9.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"29694A50-A07C-4E64-B65A-B8DC0C402B60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.9.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"265735B4-6869-4C60-9F90-524B228EC0DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.9.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D195962F-2BD9-47E0-AB21-05581FF9FDAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.9.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"42B5BD9F-0CDD-4330-8B70-87EFEE5933B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DB96EF4-A413-4632-9D5E-8A22483E4329\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.10.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D26D7344-D86B-4BD8-97A5-F33DDCE825D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.10.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8C16CB0-F061-49FA-81FF-4698E0AB6C75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.10.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"753E5480-95BE-47D5-A020-0A7B95B41A4C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.10.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02D4E217-4934-40FF-B797-2697625C4A69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.10.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E717996-F17E-4D82-8C18-D8590ECC8AB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.10.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43EC45F1-F990-4D58-90D7-86E7FE57B116\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6392BFDC-B18A-435D-A296-36CCF0AF6CF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.11.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86CF9343-8A2C-40AB-88EC-266CB971A7D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:camel:2.12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8DD9514-FCDD-4BFE-A1FD-1A44E07671FA\"}]}]}],\"references\":[{\"url\":\"http://camel.apache.org/security-advisories.data/CVE-2013-4330.txt.asc?version=1\u0026modificationDate=1380535446943\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://osvdb.org/97941\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://packetstormsecurity.com/files/123454/\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-1862.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-0124.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-0140.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-0245.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2014-0254.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://seclists.org/fulldisclosure/2013/Sep/178\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/54888\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/87542\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E\",\"source\":\"secalert@redhat.com\"}]}}"
}
}
gsd-2013-4330
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including "$simple{}" in a CamelFileName message header to a (1) FILE or (2) FTP producer.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2013-4330",
"description": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.",
"id": "GSD-2013-4330",
"references": [
"https://access.redhat.com/errata/RHSA-2014:0254",
"https://access.redhat.com/errata/RHSA-2014:0245",
"https://access.redhat.com/errata/RHSA-2014:0140",
"https://access.redhat.com/errata/RHSA-2014:0124",
"https://access.redhat.com/errata/RHSA-2013:1862",
"https://access.redhat.com/errata/RHSA-2013:1410"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2013-4330"
],
"details": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.",
"id": "GSD-2013-4330",
"modified": "2023-12-13T01:22:16.319981Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4330",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://camel.apache.org/security-advisories.data/CVE-2013-4330.txt.asc?version=1\u0026modificationDate=1380535446943",
"refsource": "MISC",
"url": "http://camel.apache.org/security-advisories.data/CVE-2013-4330.txt.asc?version=1\u0026modificationDate=1380535446943"
},
{
"name": "http://osvdb.org/97941",
"refsource": "MISC",
"url": "http://osvdb.org/97941"
},
{
"name": "http://packetstormsecurity.com/files/123454/",
"refsource": "MISC",
"url": "http://packetstormsecurity.com/files/123454/"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2013-1862.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1862.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2014-0124.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0124.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2014-0140.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0140.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2014-0245.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0245.html"
},
{
"name": "http://rhn.redhat.com/errata/RHSA-2014-0254.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0254.html"
},
{
"name": "http://seclists.org/fulldisclosure/2013/Sep/178",
"refsource": "MISC",
"url": "http://seclists.org/fulldisclosure/2013/Sep/178"
},
{
"name": "http://secunia.com/advisories/54888",
"refsource": "MISC",
"url": "http://secunia.com/advisories/54888"
},
{
"name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87542",
"refsource": "MISC",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87542"
},
{
"name": "https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E",
"refsource": "MISC",
"url": "https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E"
},
{
"name": "https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E",
"refsource": "MISC",
"url": "https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E"
}
]
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "(,2.9.7],[2.10-alpha0,2.10.6],[2.11-alpha0,2.11.1],[2.12.0,2.12.1)",
"affected_versions": "All versions up to 2.9.7, all versions starting from 2.10-alpha0 up to 2.10.6, all versions starting from 2.11-alpha0 up to 2.11.1, all versions starting from 2.12.0",
"cvss_v2": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"cwe_ids": [
"CWE-1035",
"CWE-937",
"CWE-94"
],
"date": "2019-05-24",
"description": "This package allows remote attackers to execute arbitrary simple language expressions by including `$simple{}` in a CamelFileName message header to a `FILE` or `FTP` producer.",
"fixed_versions": [
"2.10.7",
"2.11.2",
"2.12.1",
"2.9.8"
],
"identifier": "CVE-2013-4330",
"identifiers": [
"CVE-2013-4330"
],
"package_slug": "maven/org.apache.camel/camel-core",
"pubdate": "2013-10-04",
"solution": "Upgrade to versions 2.9.8, 2.10.7, 2.11.2, 2.12.1 or above",
"title": "Remote code execution via header field manipulation",
"urls": [
"http://camel.apache.org/security-advisories.data/CVE-2013-4330.txt.asc",
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4330",
"https://issues.apache.org/jira/browse/CAMEL-6734",
"https://issues.apache.org/jira/browse/CAMEL-6748"
],
"uuid": "72b45581-f596-4b1b-bdbc-2f9134cfafc1"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.9.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.4.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.10.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.7.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.8.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.4.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.11.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.7.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.8.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.3.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.9.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.9.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.10.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.5.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.10.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.12.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.6.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.9.6",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.8.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.6.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.9.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.10.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.8.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.7.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.10.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.3.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.11.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:1.6.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.7.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.9.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.5.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.8.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.10.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.8.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.0.0:milestone1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.0.0:milestone2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:camel:2.0.0:milestone3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4330"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20130930 CVE-2013-4330: Apache Camel critical disclosure vulnerability",
"refsource": "FULLDISC",
"tags": [],
"url": "http://seclists.org/fulldisclosure/2013/Sep/178"
},
{
"name": "54888",
"refsource": "SECUNIA",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/54888"
},
{
"name": "97941",
"refsource": "OSVDB",
"tags": [],
"url": "http://osvdb.org/97941"
},
{
"name": "http://camel.apache.org/security-advisories.data/CVE-2013-4330.txt.asc?version=1\u0026modificationDate=1380535446943",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "http://camel.apache.org/security-advisories.data/CVE-2013-4330.txt.asc?version=1\u0026modificationDate=1380535446943"
},
{
"name": "http://packetstormsecurity.com/files/123454/",
"refsource": "MISC",
"tags": [],
"url": "http://packetstormsecurity.com/files/123454/"
},
{
"name": "RHSA-2013:1862",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2013-1862.html"
},
{
"name": "RHSA-2014:0140",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0140.html"
},
{
"name": "RHSA-2014:0124",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0124.html"
},
{
"name": "RHSA-2014:0254",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0254.html"
},
{
"name": "RHSA-2014:0245",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2014-0245.html"
},
{
"name": "apache-camel-cve20134330-code-exec(87542)",
"refsource": "XF",
"tags": [],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87542"
},
{
"name": "https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E",
"refsource": "MISC",
"tags": [],
"url": "https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E"
},
{
"name": "https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E",
"refsource": "MISC",
"tags": [],
"url": "https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2023-02-13T04:46Z",
"publishedDate": "2013-10-04T17:55Z"
}
}
}
rhsa-2014_0124
Vulnerability from csaf_redhat
Published
2014-01-30 20:19
Modified
2024-11-05 18:18
Summary
Red Hat Security Advisory: Apache Camel security update
Notes
Topic
An update for the Apache Camel component that fixes one security issue is
now available from the Red Hat Customer Portal for Red Hat JBoss Fuse
Service Works 6.0.0.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
score, which gives detailed severity rating, is available from the CVE link
in the References section.
Details
Apache Camel is a versatile open-source integration framework based on
known Enterprise Integration Patterns.
A flaw was found in Apache Camel's parsing of the FILE_NAME header. A
remote attacker able to submit messages to a Camel route, which would write
the provided message to a file, could provide expression language (EL)
expressions in the FILE_NAME header that would be evaluated on the
server. This could lead to arbitrary remote code execution in the context
of the Camel server process. (CVE-2013-4330)
All users of Red Hat JBoss Fuse Service Works 6.0.0 as provided from the
Red Hat Customer Portal are advised to apply this update.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the Apache Camel component that fixes one security issue is\nnow available from the Red Hat Customer Portal for Red Hat JBoss Fuse\nService Works 6.0.0.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscore, which gives detailed severity rating, is available from the CVE link\nin the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Apache Camel is a versatile open-source integration framework based on\nknown Enterprise Integration Patterns.\n\nA flaw was found in Apache Camel\u0027s parsing of the FILE_NAME header. A\nremote attacker able to submit messages to a Camel route, which would write\nthe provided message to a file, could provide expression language (EL)\nexpressions in the FILE_NAME header that would be evaluated on the\nserver. This could lead to arbitrary remote code execution in the context\nof the Camel server process. (CVE-2013-4330)\n\nAll users of Red Hat JBoss Fuse Service Works 6.0.0 as provided from the\nRed Hat Customer Portal are advised to apply this update.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:0124",
"url": "https://access.redhat.com/errata/RHSA-2014:0124"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse.serviceworks\u0026downloadType=securityPatches\u0026version=6.0.0",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse.serviceworks\u0026downloadType=securityPatches\u0026version=6.0.0"
},
{
"category": "external",
"summary": "1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0124.json"
}
],
"title": "Red Hat Security Advisory: Apache Camel security update",
"tracking": {
"current_release_date": "2024-11-05T18:18:57+00:00",
"generator": {
"date": "2024-11-05T18:18:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2014:0124",
"initial_release_date": "2014-01-30T20:19:10+00:00",
"revision_history": [
{
"date": "2014-01-30T20:19:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-02-20T12:32:50+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-05T18:18:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Fuse Service Works 6.0",
"product": {
"name": "Red Hat JBoss Fuse Service Works 6.0",
"product_id": "Red Hat JBoss Fuse Service Works 6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_fuse_service_works:6.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss SOA Platform"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2013-4330",
"discovery_date": "2013-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1011726"
}
],
"notes": [
{
"category": "description",
"text": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Camel: remote code execution via header field manipulation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Fuse Service Works 6.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4330"
},
{
"category": "external",
"summary": "RHBZ#1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4330"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330"
}
],
"release_date": "2013-09-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-01-30T20:19:10+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the updates). Before applying the updates, back up your\nexisting installation, including all applications, configuration files,\ndatabases and database settings, and so on.\n\nIt is recommended to halt the server by stopping the JBoss Application\nServer process before installing this update, and then after installing the\nupdate, restart the server by starting the JBoss Application Server\nprocess.",
"product_ids": [
"Red Hat JBoss Fuse Service Works 6.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0124"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss Fuse Service Works 6.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Camel: remote code execution via header field manipulation"
}
]
}
rhsa-2013_1410
Vulnerability from csaf_redhat
Published
2013-10-07 17:13
Modified
2024-11-05 18:12
Summary
Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.0.0 patch 4
Notes
Topic
Red Hat JBoss Fuse 6.0.0 patch 4, which fixes three security issues and one
bug, is now available from the Red Hat Customer Portal.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
Red Hat JBoss Fuse 6.0.0, based on Apache ServiceMix, provides an
integration platform. Red Hat JBoss A-MQ 6.0.0, based on Apache ActiveMQ,
is a standards compliant messaging system that is tailored for use in
mission critical applications.
Red Hat JBoss Fuse/A-MQ 6.0.0 patch 4 is an update to Red Hat JBoss Fuse
6.0.0 and Red Hat JBoss A-MQ 6.0.0. This update addresses the following
security issues:
Restlet applications which use ObjectRepresentation to map HTTP request
data directly to an object deserialize arbitrary user-provided XML using
XMLDecoder. It was found that XMLDecoder deserialized an attacker-provided
definition of a class and executed its methods. A remote attacker could use
this flaw to perform arbitrary remote code execution in the context of the
server running the Restlet application. (CVE-2013-4221)
A flaw was found in the way Restlet handled deserialization. Restlet
applications which use ObjectRepresentation to map HTTP request data
directly to an object deserialize arbitrary user-provided serialized
data. A remote attacker could use this flaw to trigger the execution of the
deserialization methods in any serializable class deployed on the server.
This could lead to a variety of security impacts depending on the
deserialization logic of these classes. (CVE-2013-4271)
A flaw was found in Apache Camel's parsing of the FILE_NAME header. A
remote attacker able to submit messages to a Camel route, which would write
the provided message to a file, could provide expression language (EL)
expressions in the FILE_NAME header, which would be evaluated on the
server. This could lead to arbitrary remote code execution in the context
of the Camel server process. (CVE-2013-4330)
The CVE-2013-4271 issue was discovered by David Jorm of the Red Hat
Security Response Team.
This update also corrected a problem with installing JBoss Fuse 6.0.0 patch
3. When the pax-url-maven-commons bundle was installed in the container,
the installation would fail with a null pointer error. With this update,
the installation does not fail.
All users of Red Hat JBoss Fuse 6.0.0 and Red Hat JBoss A-MQ 6.0.0 as
provided from the Red Hat Customer Portal are advised to apply this patch.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Fuse 6.0.0 patch 4, which fixes three security issues and one\nbug, is now available from the Red Hat Customer Portal.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat JBoss Fuse 6.0.0, based on Apache ServiceMix, provides an\nintegration platform. Red Hat JBoss A-MQ 6.0.0, based on Apache ActiveMQ,\nis a standards compliant messaging system that is tailored for use in\nmission critical applications.\n\nRed Hat JBoss Fuse/A-MQ 6.0.0 patch 4 is an update to Red Hat JBoss Fuse\n6.0.0 and Red Hat JBoss A-MQ 6.0.0. This update addresses the following\nsecurity issues:\n\nRestlet applications which use ObjectRepresentation to map HTTP request\ndata directly to an object deserialize arbitrary user-provided XML using\nXMLDecoder. It was found that XMLDecoder deserialized an attacker-provided\ndefinition of a class and executed its methods. A remote attacker could use\nthis flaw to perform arbitrary remote code execution in the context of the\nserver running the Restlet application. (CVE-2013-4221)\n\nA flaw was found in the way Restlet handled deserialization. Restlet\napplications which use ObjectRepresentation to map HTTP request data\ndirectly to an object deserialize arbitrary user-provided serialized\ndata. A remote attacker could use this flaw to trigger the execution of the\ndeserialization methods in any serializable class deployed on the server.\nThis could lead to a variety of security impacts depending on the\ndeserialization logic of these classes. (CVE-2013-4271)\n\nA flaw was found in Apache Camel\u0027s parsing of the FILE_NAME header. A\nremote attacker able to submit messages to a Camel route, which would write\nthe provided message to a file, could provide expression language (EL)\nexpressions in the FILE_NAME header, which would be evaluated on the\nserver. This could lead to arbitrary remote code execution in the context\nof the Camel server process. (CVE-2013-4330)\n\nThe CVE-2013-4271 issue was discovered by David Jorm of the Red Hat\nSecurity Response Team.\n\nThis update also corrected a problem with installing JBoss Fuse 6.0.0 patch\n3. When the pax-url-maven-commons bundle was installed in the container,\nthe installation would fail with a null pointer error. With this update,\nthe installation does not fail.\n\nAll users of Red Hat JBoss Fuse 6.0.0 and Red Hat JBoss A-MQ 6.0.0 as\nprovided from the Red Hat Customer Portal are advised to apply this patch.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:1410",
"url": "https://access.redhat.com/errata/RHSA-2013:1410"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse\u0026downloadType=securityPatches\u0026version=6.0.0",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse\u0026downloadType=securityPatches\u0026version=6.0.0"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.amq\u0026downloadType=securityPatches\u0026version=6.0.0",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.amq\u0026downloadType=securityPatches\u0026version=6.0.0"
},
{
"category": "external",
"summary": "995275",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=995275"
},
{
"category": "external",
"summary": "999735",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=999735"
},
{
"category": "external",
"summary": "1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_1410.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.0.0 patch 4",
"tracking": {
"current_release_date": "2024-11-05T18:12:41+00:00",
"generator": {
"date": "2024-11-05T18:12:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2013:1410",
"initial_release_date": "2013-10-07T17:13:00+00:00",
"revision_history": [
{
"date": "2013-10-07T17:13:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-10-07T17:14:44+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-05T18:12:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss A-MQ 6.0",
"product": {
"name": "Red Hat JBoss A-MQ 6.0",
"product_id": "Red Hat JBoss A-MQ 6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_amq:6.0.0"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Fuse 6.0",
"product": {
"name": "Red Hat JBoss Fuse 6.0",
"product_id": "Red Hat JBoss Fuse 6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_fuse:6.0.0"
}
}
}
],
"category": "product_family",
"name": "Fuse Enterprise Middleware"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2013-4221",
"discovery_date": "2013-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "995275"
}
],
"notes": [
{
"category": "description",
"text": "The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources using the Java XMLDecoder, which allows remote attackers to execute arbitrary Java code via crafted XML.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Restlet: remote code execution due to insecure XML deserialization",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss A-MQ 6.0",
"Red Hat JBoss Fuse 6.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4221"
},
{
"category": "external",
"summary": "RHBZ#995275",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=995275"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4221",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4221"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4221",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4221"
},
{
"category": "external",
"summary": "http://blog.diniscruz.com/2013/08/using-xmldecoder-to-execute-server-side.html",
"url": "http://blog.diniscruz.com/2013/08/using-xmldecoder-to-execute-server-side.html"
},
{
"category": "external",
"summary": "http://restlet.org/learn/2.1/changes",
"url": "http://restlet.org/learn/2.1/changes"
}
],
"release_date": "2013-08-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-10-07T17:13:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).",
"product_ids": [
"Red Hat JBoss A-MQ 6.0",
"Red Hat JBoss Fuse 6.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:1410"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss A-MQ 6.0",
"Red Hat JBoss Fuse 6.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Restlet: remote code execution due to insecure XML deserialization"
},
{
"acknowledgments": [
{
"names": [
"David Jorm"
],
"organization": "Red Hat Security Response Team",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2013-4271",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2013-08-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "999735"
}
],
"notes": [
{
"category": "description",
"text": "The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources, which allows remote attackers to execute arbitrary Java code via a serialized object, a different vulnerability than CVE-2013-4221.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Restlet: remote code execution due to insecure deserialization",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss A-MQ 6.0",
"Red Hat JBoss Fuse 6.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4271"
},
{
"category": "external",
"summary": "RHBZ#999735",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=999735"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4271",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4271"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4271",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4271"
},
{
"category": "external",
"summary": "http://restlet.org/learn/2.1/changes",
"url": "http://restlet.org/learn/2.1/changes"
}
],
"release_date": "2013-09-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-10-07T17:13:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).",
"product_ids": [
"Red Hat JBoss A-MQ 6.0",
"Red Hat JBoss Fuse 6.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:1410"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss A-MQ 6.0",
"Red Hat JBoss Fuse 6.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Restlet: remote code execution due to insecure deserialization"
},
{
"cve": "CVE-2013-4330",
"discovery_date": "2013-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1011726"
}
],
"notes": [
{
"category": "description",
"text": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Camel: remote code execution via header field manipulation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss A-MQ 6.0",
"Red Hat JBoss Fuse 6.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4330"
},
{
"category": "external",
"summary": "RHBZ#1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4330"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330"
}
],
"release_date": "2013-09-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-10-07T17:13:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).",
"product_ids": [
"Red Hat JBoss A-MQ 6.0",
"Red Hat JBoss Fuse 6.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:1410"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss A-MQ 6.0",
"Red Hat JBoss Fuse 6.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Camel: remote code execution via header field manipulation"
}
]
}
rhsa-2013_1862
Vulnerability from csaf_redhat
Published
2013-12-19 22:49
Modified
2024-11-05 18:17
Summary
Red Hat Security Advisory: Fuse ESB Enterprise/Fuse MQ Enterprise 7.1.0 update
Notes
Topic
Fuse ESB Enterprise/MQ Enterprise 7.1.0 R1 P1 (Patch 1 on Rollup Patch 1),
which contains several bug fixes and addresses several security issues, is
now available from the Red Hat Customer Portal.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
Fuse ESB Enterprise is an integration platform based on Apache ServiceMix.
Fuse MQ Enterprise, based on Apache ActiveMQ, is a standards compliant
messaging system that is tailored for use in mission critical applications.
This release of Fuse ESB Enterprise/MQ Enterprise 7.1.0 R1 P1 is an update
to Fuse ESB Enterprise 7.1.0 and Fuse MQ Enterprise 7.1.0. It includes bug
fixes. Refer to the readme file included with the patch files for
information about the bug fixes.
The following security issues are also fixed with this release:
A flaw was found in the logging performed during deserialization of the
BrokerFactory class in Apache OpenJPA. A remote attacker able to supply a
serialized instance of the BrokerFactory class, which will be deserialized
on a server, could use this flaw to write an executable file to the
server's file system. (CVE-2013-1768)
Restlet applications, which used ObjectRepresentation to map HTTP request
data directly to an object, deserialized arbitrary user-provided XML using
XMLDecoder. XMLDecoder deserialized an attacker-provided definition of a
class and executed its methods. A remote attacker could use this flaw to
perform remote code execution in the context of the server running the
Restlet application. (CVE-2013-4221)
A flaw was found in the way Restlet handled deserialization.
Restlet applications, which used ObjectRepresentation to map HTTP request
data directly to an object, deserialized arbitrary user-provided serialized
data. A remote attacker could use this flaw to trigger the execution of the
deserialization methods in any serializable class deployed on the server.
This could lead to a variety of security impacts depending on the
deserialization logic of these classes. (CVE-2013-4271)
A flaw was found in Apache Camel's parsing of the FILE_NAME header.
A remote attacker able to submit messages to a Camel route, which would
write the provided message to a file, could provide expression language
(EL) expressions in the FILE_NAME header, which would be evaluated on the
server. This could lead to arbitrary remote code execution in the context
of the Camel server process. (CVE-2013-4330)
Multiple stored cross-site scripting (XSS) flaws were found in the Fuse
Management Console. A remote attacker could use this flaw to perform an XSS
attack against other users of the Fuse Management Console. (CVE-2013-4372)
The CVE-2013-4271 issue was discovered by David Jorm of the Red Hat
Security Response Team.
All users of Fuse ESB Enterprise/MQ Enterprise 7.1.0 as provided from the
Red Hat Customer Portal are advised to upgrade to Fuse ESB Enterprise/MQ
Enterprise 7.1.0 R1 P1.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Fuse ESB Enterprise/MQ Enterprise 7.1.0 R1 P1 (Patch 1 on Rollup Patch 1),\nwhich contains several bug fixes and addresses several security issues, is\nnow available from the Red Hat Customer Portal.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Fuse ESB Enterprise is an integration platform based on Apache ServiceMix.\nFuse MQ Enterprise, based on Apache ActiveMQ, is a standards compliant\nmessaging system that is tailored for use in mission critical applications.\n\nThis release of Fuse ESB Enterprise/MQ Enterprise 7.1.0 R1 P1 is an update\nto Fuse ESB Enterprise 7.1.0 and Fuse MQ Enterprise 7.1.0. It includes bug\nfixes. Refer to the readme file included with the patch files for\ninformation about the bug fixes.\n\nThe following security issues are also fixed with this release:\n\nA flaw was found in the logging performed during deserialization of the\nBrokerFactory class in Apache OpenJPA. A remote attacker able to supply a\nserialized instance of the BrokerFactory class, which will be deserialized\non a server, could use this flaw to write an executable file to the\nserver\u0027s file system. (CVE-2013-1768)\n\nRestlet applications, which used ObjectRepresentation to map HTTP request\ndata directly to an object, deserialized arbitrary user-provided XML using\nXMLDecoder. XMLDecoder deserialized an attacker-provided definition of a\nclass and executed its methods. A remote attacker could use this flaw to\nperform remote code execution in the context of the server running the\nRestlet application. (CVE-2013-4221)\n\nA flaw was found in the way Restlet handled deserialization.\nRestlet applications, which used ObjectRepresentation to map HTTP request\ndata directly to an object, deserialized arbitrary user-provided serialized\ndata. A remote attacker could use this flaw to trigger the execution of the\ndeserialization methods in any serializable class deployed on the server.\nThis could lead to a variety of security impacts depending on the\ndeserialization logic of these classes. (CVE-2013-4271)\n\nA flaw was found in Apache Camel\u0027s parsing of the FILE_NAME header.\nA remote attacker able to submit messages to a Camel route, which would\nwrite the provided message to a file, could provide expression language\n(EL) expressions in the FILE_NAME header, which would be evaluated on the\nserver. This could lead to arbitrary remote code execution in the context\nof the Camel server process. (CVE-2013-4330)\n\nMultiple stored cross-site scripting (XSS) flaws were found in the Fuse\nManagement Console. A remote attacker could use this flaw to perform an XSS\nattack against other users of the Fuse Management Console. (CVE-2013-4372)\n\nThe CVE-2013-4271 issue was discovered by David Jorm of the Red Hat\nSecurity Response Team.\n\nAll users of Fuse ESB Enterprise/MQ Enterprise 7.1.0 as provided from the\nRed Hat Customer Portal are advised to upgrade to Fuse ESB Enterprise/MQ\nEnterprise 7.1.0 R1 P1.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:1862",
"url": "https://access.redhat.com/errata/RHSA-2013:1862"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=fuse.esb.enterprise\u0026downloadType=securityPatches\u0026version=7.1.0",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=fuse.esb.enterprise\u0026downloadType=securityPatches\u0026version=7.1.0"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=fuse.mq.enterprise\u0026downloadType=securityPatches\u0026version=7.1.0",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=fuse.mq.enterprise\u0026downloadType=securityPatches\u0026version=7.1.0"
},
{
"category": "external",
"summary": "984034",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=984034"
},
{
"category": "external",
"summary": "995275",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=995275"
},
{
"category": "external",
"summary": "999735",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=999735"
},
{
"category": "external",
"summary": "1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "external",
"summary": "1011736",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011736"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_1862.json"
}
],
"title": "Red Hat Security Advisory: Fuse ESB Enterprise/Fuse MQ Enterprise 7.1.0 update",
"tracking": {
"current_release_date": "2024-11-05T18:17:35+00:00",
"generator": {
"date": "2024-11-05T18:17:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2013:1862",
"initial_release_date": "2013-12-19T22:49:00+00:00",
"revision_history": [
{
"date": "2013-12-19T22:49:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-12-19T22:49:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-05T18:17:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Fuse ESB Enterprise 7.1.0",
"product": {
"name": "Fuse ESB Enterprise 7.1.0",
"product_id": "Fuse ESB Enterprise 7.1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:fuse_esb_enterprise:7.1.0"
}
}
},
{
"category": "product_name",
"name": "Fuse Management Console 7.1.0",
"product": {
"name": "Fuse Management Console 7.1.0",
"product_id": "Fuse Management Console 7.1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:fuse_management_console:7.1.0"
}
}
},
{
"category": "product_name",
"name": "Fuse MQ Enterprise 7.1.0",
"product": {
"name": "Fuse MQ Enterprise 7.1.0",
"product_id": "Fuse MQ Enterprise 7.1.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:fuse_mq_enterprise:7.1.0"
}
}
}
],
"category": "product_family",
"name": "Fuse Enterprise Middleware"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2013-1768",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2013-07-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "984034"
}
],
"notes": [
{
"category": "description",
"text": "The BrokerFactory functionality in Apache OpenJPA 1.x before 1.2.3 and 2.x before 2.2.2 creates local executable JSP files containing logging trace data produced during deserialization of certain crafted OpenJPA objects, which makes it easier for remote attackers to execute arbitrary code by creating a serialized object and leveraging improperly secured server programs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openjpa: Remote arbitrary code execution by creating a serialized object and leveraging improperly secured server programs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1768"
},
{
"category": "external",
"summary": "RHBZ#984034",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=984034"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1768",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1768"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1768",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1768"
}
],
"release_date": "2013-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-12-19T22:49:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).",
"product_ids": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:1862"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openjpa: Remote arbitrary code execution by creating a serialized object and leveraging improperly secured server programs"
},
{
"cve": "CVE-2013-4221",
"discovery_date": "2013-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "995275"
}
],
"notes": [
{
"category": "description",
"text": "The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources using the Java XMLDecoder, which allows remote attackers to execute arbitrary Java code via crafted XML.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Restlet: remote code execution due to insecure XML deserialization",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4221"
},
{
"category": "external",
"summary": "RHBZ#995275",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=995275"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4221",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4221"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4221",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4221"
},
{
"category": "external",
"summary": "http://blog.diniscruz.com/2013/08/using-xmldecoder-to-execute-server-side.html",
"url": "http://blog.diniscruz.com/2013/08/using-xmldecoder-to-execute-server-side.html"
},
{
"category": "external",
"summary": "http://restlet.org/learn/2.1/changes",
"url": "http://restlet.org/learn/2.1/changes"
}
],
"release_date": "2013-08-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-12-19T22:49:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).",
"product_ids": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:1862"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Restlet: remote code execution due to insecure XML deserialization"
},
{
"acknowledgments": [
{
"names": [
"David Jorm"
],
"organization": "Red Hat Security Response Team",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2013-4271",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2013-08-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "999735"
}
],
"notes": [
{
"category": "description",
"text": "The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources, which allows remote attackers to execute arbitrary Java code via a serialized object, a different vulnerability than CVE-2013-4221.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Restlet: remote code execution due to insecure deserialization",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4271"
},
{
"category": "external",
"summary": "RHBZ#999735",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=999735"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4271",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4271"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4271",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4271"
},
{
"category": "external",
"summary": "http://restlet.org/learn/2.1/changes",
"url": "http://restlet.org/learn/2.1/changes"
}
],
"release_date": "2013-09-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-12-19T22:49:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).",
"product_ids": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:1862"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Restlet: remote code execution due to insecure deserialization"
},
{
"cve": "CVE-2013-4330",
"discovery_date": "2013-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1011726"
}
],
"notes": [
{
"category": "description",
"text": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Camel: remote code execution via header field manipulation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4330"
},
{
"category": "external",
"summary": "RHBZ#1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4330"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330"
}
],
"release_date": "2013-09-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-12-19T22:49:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).",
"product_ids": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:1862"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Camel: remote code execution via header field manipulation"
},
{
"cve": "CVE-2013-4372",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2013-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1011736"
}
],
"notes": [
{
"category": "description",
"text": "Multiple cross-site scripting (XSS) vulnerabilities in Fuse Management Console in Red Hat JBoss Fuse 6.0.0 before patch 3 and JBoss A-MQ 6.0.0 before patch 3 allow remote attackers to inject arbitrary web script or HTML via the (1) user field in the create user page or (2) profile version to the create profile page.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Console: Stored cross-site scripting (XSS)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4372"
},
{
"category": "external",
"summary": "RHBZ#1011736",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011736"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4372",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4372"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4372",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4372"
}
],
"release_date": "2013-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-12-19T22:49:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).",
"product_ids": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:1862"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"Fuse ESB Enterprise 7.1.0",
"Fuse MQ Enterprise 7.1.0",
"Fuse Management Console 7.1.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Console: Stored cross-site scripting (XSS)"
}
]
}
rhsa-2014_0140
Vulnerability from csaf_redhat
Published
2014-02-05 17:42
Modified
2024-11-05 18:19
Summary
Red Hat Security Advisory: Apache Camel security update
Notes
Topic
An update for the Apache Camel component that fixes one security issue is
now available from the Red Hat Customer Portal for Red Hat JBoss BRMS
6.0.0, and Red Hat JBoss BPMS 6.0.0.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
score, which gives detailed severity rating, is available from the CVE link
in the References section.
Details
Apache Camel is a versatile open-source integration framework based on
known Enterprise Integration Patterns.
A flaw was found in Apache Camel's parsing of the FILE_NAME header.
A remote attacker able to submit messages to a Camel route, which would
write the provided message to a file, could provide expression language
(EL) expressions in the FILE_NAME header that would be evaluated on the
server. This could lead to arbitrary remote code execution in the context
of the Camel server process. (CVE-2013-4330)
All users of the affected products as provided from the Red Hat Customer
Portal are advised to apply this update.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the Apache Camel component that fixes one security issue is\nnow available from the Red Hat Customer Portal for Red Hat JBoss BRMS\n6.0.0, and Red Hat JBoss BPMS 6.0.0.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscore, which gives detailed severity rating, is available from the CVE link\nin the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Apache Camel is a versatile open-source integration framework based on\nknown Enterprise Integration Patterns.\n\nA flaw was found in Apache Camel\u0027s parsing of the FILE_NAME header.\nA remote attacker able to submit messages to a Camel route, which would\nwrite the provided message to a file, could provide expression language\n(EL) expressions in the FILE_NAME header that would be evaluated on the\nserver. This could lead to arbitrary remote code execution in the context\nof the Camel server process. (CVE-2013-4330)\n\nAll users of the affected products as provided from the Red Hat Customer\nPortal are advised to apply this update.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:0140",
"url": "https://access.redhat.com/errata/RHSA-2014:0140"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=brms\u0026downloadType=securityPatches\u0026version=6.0.0",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=brms\u0026downloadType=securityPatches\u0026version=6.0.0"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=bpm.suite\u0026downloadType=securityPatches\u0026version=6.0.0",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=bpm.suite\u0026downloadType=securityPatches\u0026version=6.0.0"
},
{
"category": "external",
"summary": "1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0140.json"
}
],
"title": "Red Hat Security Advisory: Apache Camel security update",
"tracking": {
"current_release_date": "2024-11-05T18:19:42+00:00",
"generator": {
"date": "2024-11-05T18:19:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2014:0140",
"initial_release_date": "2014-02-05T17:42:18+00:00",
"revision_history": [
{
"date": "2014-02-05T17:42:18+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-06-15T16:41:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-05T18:19:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss BPMS 6.0",
"product": {
"name": "Red Hat JBoss BPMS 6.0",
"product_id": "Red Hat JBoss BPMS 6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_bpms:6.0"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss BRMS 6.0",
"product": {
"name": "Red Hat JBoss BRMS 6.0",
"product_id": "Red Hat JBoss BRMS 6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_brms:6.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Middleware"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2013-4330",
"discovery_date": "2013-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1011726"
}
],
"notes": [
{
"category": "description",
"text": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Camel: remote code execution via header field manipulation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss BPMS 6.0",
"Red Hat JBoss BRMS 6.0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4330"
},
{
"category": "external",
"summary": "RHBZ#1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4330"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330"
}
],
"release_date": "2013-09-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-02-05T17:42:18+00:00",
"details": "The References section of this erratum contains download links (you must\nlog in to download the updates). Before applying the updates, back up your\nexisting installation, including all applications, configuration files,\ndatabases and database settings, and so on.\n\nIt is recommended to halt the server by stopping the JBoss Application\nServer process before installing this update, and then after installing the\nupdate, restart the server by starting the JBoss Application Server\nprocess.",
"product_ids": [
"Red Hat JBoss BPMS 6.0",
"Red Hat JBoss BRMS 6.0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0140"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss BPMS 6.0",
"Red Hat JBoss BRMS 6.0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Camel: remote code execution via header field manipulation"
}
]
}
rhsa-2014_0254
Vulnerability from csaf_redhat
Published
2014-03-05 19:05
Modified
2024-11-05 18:20
Summary
Red Hat Security Advisory: activemq security update
Notes
Topic
An updated activemq package that fixes multiple security issues is now
available for Red Hat OpenShift Enterprise 1.2.7.
The Red Hat Security Response Team has rated this update as having
Important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
Apache ActiveMQ provides a SOA infrastructure to connect processes across
heterogeneous systems.
A flaw was found in Apache Camel's parsing of the FILE_NAME header.
A remote attacker able to submit messages to a Camel route, which would
write the provided message to a file, could provide expression language
(EL) expressions in the FILE_NAME header, which would be evaluated on the
server. This could lead to arbitrary remote code execution in the context
of the Camel server process. (CVE-2013-4330)
It was found that the Apache Camel XSLT component allowed XSL stylesheets
to call external Java methods. A remote attacker able to submit messages to
a Camel route could use this flaw to perform arbitrary remote code
execution in the context of the Camel server process. (CVE-2014-0003)
It was discovered that the Spring OXM wrapper did not expose any property
for disabling entity resolution when using the JAXB unmarshaller. A remote
attacker could use this flaw to conduct XML External Entity (XXE) attacks
on web sites, and read files in the context of the user running the
application server. The patch for this flaw disables external entity
processing by default, and provides a configuration directive to re-enable
it. (CVE-2013-4152)
The HawtJNI Library class wrote native libraries to a predictable file name
in /tmp/ when the native libraries were bundled in a JAR file, and no
custom library path was specified. A local attacker could overwrite these
native libraries with malicious versions during the window between when
HawtJNI writes them and when they are executed. (CVE-2013-2035)
The CVE-2013-2035 issue was discovered by Florian Weimer of the Red Hat
Product Security Team, and the CVE-2014-0003 issue was discovered by David
Jorm of the Red Hat Security Response Team.
All users of Red Hat OpenShift Enterprise 1.2.7 are advised to upgrade to
this updated package, which corrects these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated activemq package that fixes multiple security issues is now\navailable for Red Hat OpenShift Enterprise 1.2.7.\n\nThe Red Hat Security Response Team has rated this update as having\nImportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Apache ActiveMQ provides a SOA infrastructure to connect processes across\nheterogeneous systems.\n\nA flaw was found in Apache Camel\u0027s parsing of the FILE_NAME header.\nA remote attacker able to submit messages to a Camel route, which would\nwrite the provided message to a file, could provide expression language\n(EL) expressions in the FILE_NAME header, which would be evaluated on the\nserver. This could lead to arbitrary remote code execution in the context\nof the Camel server process. (CVE-2013-4330)\n\nIt was found that the Apache Camel XSLT component allowed XSL stylesheets\nto call external Java methods. A remote attacker able to submit messages to\na Camel route could use this flaw to perform arbitrary remote code\nexecution in the context of the Camel server process. (CVE-2014-0003)\n\nIt was discovered that the Spring OXM wrapper did not expose any property\nfor disabling entity resolution when using the JAXB unmarshaller. A remote\nattacker could use this flaw to conduct XML External Entity (XXE) attacks\non web sites, and read files in the context of the user running the\napplication server. The patch for this flaw disables external entity\nprocessing by default, and provides a configuration directive to re-enable\nit. (CVE-2013-4152)\n\nThe HawtJNI Library class wrote native libraries to a predictable file name\nin /tmp/ when the native libraries were bundled in a JAR file, and no\ncustom library path was specified. A local attacker could overwrite these\nnative libraries with malicious versions during the window between when\nHawtJNI writes them and when they are executed. (CVE-2013-2035)\n\nThe CVE-2013-2035 issue was discovered by Florian Weimer of the Red Hat\nProduct Security Team, and the CVE-2014-0003 issue was discovered by David\nJorm of the Red Hat Security Response Team.\n\nAll users of Red Hat OpenShift Enterprise 1.2.7 are advised to upgrade to\nthis updated package, which corrects these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:0254",
"url": "https://access.redhat.com/errata/RHSA-2014:0254"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "958618",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=958618"
},
{
"category": "external",
"summary": "1000186",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1000186"
},
{
"category": "external",
"summary": "1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "external",
"summary": "1049692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049692"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0254.json"
}
],
"title": "Red Hat Security Advisory: activemq security update",
"tracking": {
"current_release_date": "2024-11-05T18:20:10+00:00",
"generator": {
"date": "2024-11-05T18:20:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2014:0254",
"initial_release_date": "2014-03-05T19:05:16+00:00",
"revision_history": [
{
"date": "2014-03-05T19:05:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2014-03-05T19:05:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-05T18:20:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSE Infrastructure 1.2",
"product": {
"name": "RHOSE Infrastructure 1.2",
"product_id": "6Server-RHOSE-INFRA-1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:1.2::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Enterprise Node",
"product": {
"name": "Red Hat OpenShift Enterprise Node",
"product_id": "6Server-RHOSE-NODE-1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:1.2::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"product": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"product_id": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/activemq@5.9.0-4.redhat.610328.el6op?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product": {
"name": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product_id": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/activemq-client@5.9.0-4.redhat.610328.el6op?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product_id": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/activemq@5.9.0-4.redhat.610328.el6op?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.src as a component of RHOSE Infrastructure 1.2",
"product_id": "6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src"
},
"product_reference": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"relates_to_product_reference": "6Server-RHOSE-INFRA-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64 as a component of RHOSE Infrastructure 1.2",
"product_id": "6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64"
},
"product_reference": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"relates_to_product_reference": "6Server-RHOSE-INFRA-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64 as a component of RHOSE Infrastructure 1.2",
"product_id": "6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
},
"product_reference": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"relates_to_product_reference": "6Server-RHOSE-INFRA-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.src as a component of Red Hat OpenShift Enterprise Node",
"product_id": "6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src"
},
"product_reference": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"relates_to_product_reference": "6Server-RHOSE-NODE-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64 as a component of Red Hat OpenShift Enterprise Node",
"product_id": "6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64"
},
"product_reference": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"relates_to_product_reference": "6Server-RHOSE-NODE-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64 as a component of Red Hat OpenShift Enterprise Node",
"product_id": "6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
},
"product_reference": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"relates_to_product_reference": "6Server-RHOSE-NODE-1.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Florian Weimer"
],
"organization": "Red Hat Product Security Team",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2013-2035",
"cwe": {
"id": "CWE-377",
"name": "Insecure Temporary File"
},
"discovery_date": "2013-04-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "958618"
}
],
"notes": [
{
"category": "description",
"text": "The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJNI writes them and when they are executed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HawtJNI: predictable temporary file name leading to local arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2035"
},
{
"category": "external",
"summary": "RHBZ#958618",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=958618"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2035",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2035"
}
],
"release_date": "2013-05-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-03-05T19:05:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0254"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "HawtJNI: predictable temporary file name leading to local arbitrary code execution"
},
{
"cve": "CVE-2013-4152",
"discovery_date": "2013-08-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1000186"
}
],
"notes": [
{
"category": "description",
"text": "The Spring OXM wrapper in Spring Framework before 3.2.4 and 4.0.0.M1, when using the JAXB marshaller, does not disable entity resolution, which allows context-dependent attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via an XML external entity declaration in conjunction with an entity reference in a (1) DOMSource, (2) StAXSource, (3) SAXSource, or (4) StreamSource, aka an XML External Entity (XXE) issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Framework: XML External Entity (XXE) injection flaw",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4152"
},
{
"category": "external",
"summary": "RHBZ#1000186",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1000186"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4152",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4152"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4152",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4152"
},
{
"category": "external",
"summary": "http://www.gopivotal.com/security/cve-2013-4152",
"url": "http://www.gopivotal.com/security/cve-2013-4152"
},
{
"category": "external",
"summary": "https://github.com/SpringSource/spring-framework/pull/317",
"url": "https://github.com/SpringSource/spring-framework/pull/317"
},
{
"category": "external",
"summary": "https://jira.springsource.org/browse/SPR-10806",
"url": "https://jira.springsource.org/browse/SPR-10806"
}
],
"release_date": "2013-08-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-03-05T19:05:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0254"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Framework: XML External Entity (XXE) injection flaw"
},
{
"cve": "CVE-2013-4330",
"discovery_date": "2013-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1011726"
}
],
"notes": [
{
"category": "description",
"text": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Camel: remote code execution via header field manipulation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4330"
},
{
"category": "external",
"summary": "RHBZ#1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4330"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330"
}
],
"release_date": "2013-09-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-03-05T19:05:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0254"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Camel: remote code execution via header field manipulation"
},
{
"acknowledgments": [
{
"names": [
"David Jorm"
],
"organization": "Red Hat Security Response Team",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2014-0003",
"discovery_date": "2014-01-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1049692"
}
],
"notes": [
{
"category": "description",
"text": "The XSLT component in Apache Camel 2.11.x before 2.11.4, 2.12.x before 2.12.3, and possibly earlier versions allows remote attackers to execute arbitrary Java methods via a crafted message.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Camel: remote code execution via XSL",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-0003"
},
{
"category": "external",
"summary": "RHBZ#1049692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049692"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-0003",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0003"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0003",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0003"
},
{
"category": "external",
"summary": "http://camel.apache.org/security-advisories.data/CVE-2014-0003.txt.asc",
"url": "http://camel.apache.org/security-advisories.data/CVE-2014-0003.txt.asc"
}
],
"release_date": "2014-02-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-03-05T19:05:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0254"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-1.2:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-1.2:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Camel: remote code execution via XSL"
}
]
}
rhsa-2014_0245
Vulnerability from csaf_redhat
Published
2014-03-03 18:25
Modified
2024-11-05 18:20
Summary
Red Hat Security Advisory: activemq security update
Notes
Topic
An updated activemq package that fixes multiple security issues is now
available for Red Hat OpenShift Enterprise 2.0.
The Red Hat Security Response Team has rated this update as having
Important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
Apache ActiveMQ provides a SOA infrastructure to connect processes across
heterogeneous systems.
A flaw was found in Apache Camel's parsing of the FILE_NAME header.
A remote attacker able to submit messages to a Camel route, which would
write the provided message to a file, could provide expression language
(EL) expressions in the FILE_NAME header, which would be evaluated on the
server. This could lead to arbitrary remote code execution in the context
of the Camel server process. (CVE-2013-4330)
It was found that the Apache Camel XSLT component allowed XSL stylesheets
to call external Java methods. A remote attacker able to submit messages to
a Camel route could use this flaw to perform arbitrary remote code
execution in the context of the Camel server process. (CVE-2014-0003)
It was discovered that the Spring OXM wrapper did not expose any property
for disabling entity resolution when using the JAXB unmarshaller. A remote
attacker could use this flaw to conduct XML External Entity (XXE) attacks
on web sites, and read files in the context of the user running the
application server. The patch for this flaw disables external entity
processing by default, and provides a configuration directive to re-enable
it. (CVE-2013-4152)
The HawtJNI Library class wrote native libraries to a predictable file name
in /tmp/ when the native libraries were bundled in a JAR file, and no
custom library path was specified. A local attacker could overwrite these
native libraries with malicious versions during the window between when
HawtJNI writes them and when they are executed. (CVE-2013-2035)
The CVE-2013-2035 issue was discovered by Florian Weimer of the Red Hat
Product Security Team, and the CVE-2014-0003 issue was discovered by David
Jorm of the Red Hat Security Response Team.
All users of Red Hat OpenShift Enterprise 2.0 are advised to upgrade to
this updated package, which corrects these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated activemq package that fixes multiple security issues is now\navailable for Red Hat OpenShift Enterprise 2.0.\n\nThe Red Hat Security Response Team has rated this update as having\nImportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Apache ActiveMQ provides a SOA infrastructure to connect processes across\nheterogeneous systems.\n\nA flaw was found in Apache Camel\u0027s parsing of the FILE_NAME header.\nA remote attacker able to submit messages to a Camel route, which would\nwrite the provided message to a file, could provide expression language\n(EL) expressions in the FILE_NAME header, which would be evaluated on the\nserver. This could lead to arbitrary remote code execution in the context\nof the Camel server process. (CVE-2013-4330)\n\nIt was found that the Apache Camel XSLT component allowed XSL stylesheets\nto call external Java methods. A remote attacker able to submit messages to\na Camel route could use this flaw to perform arbitrary remote code\nexecution in the context of the Camel server process. (CVE-2014-0003)\n\nIt was discovered that the Spring OXM wrapper did not expose any property\nfor disabling entity resolution when using the JAXB unmarshaller. A remote\nattacker could use this flaw to conduct XML External Entity (XXE) attacks\non web sites, and read files in the context of the user running the\napplication server. The patch for this flaw disables external entity\nprocessing by default, and provides a configuration directive to re-enable\nit. (CVE-2013-4152)\n\nThe HawtJNI Library class wrote native libraries to a predictable file name\nin /tmp/ when the native libraries were bundled in a JAR file, and no\ncustom library path was specified. A local attacker could overwrite these\nnative libraries with malicious versions during the window between when\nHawtJNI writes them and when they are executed. (CVE-2013-2035)\n\nThe CVE-2013-2035 issue was discovered by Florian Weimer of the Red Hat\nProduct Security Team, and the CVE-2014-0003 issue was discovered by David\nJorm of the Red Hat Security Response Team.\n\nAll users of Red Hat OpenShift Enterprise 2.0 are advised to upgrade to\nthis updated package, which corrects these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2014:0245",
"url": "https://access.redhat.com/errata/RHSA-2014:0245"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "958618",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=958618"
},
{
"category": "external",
"summary": "1000186",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1000186"
},
{
"category": "external",
"summary": "1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "external",
"summary": "1049692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049692"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0245.json"
}
],
"title": "Red Hat Security Advisory: activemq security update",
"tracking": {
"current_release_date": "2024-11-05T18:20:16+00:00",
"generator": {
"date": "2024-11-05T18:20:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2014:0245",
"initial_release_date": "2014-03-03T18:25:38+00:00",
"revision_history": [
{
"date": "2014-03-03T18:25:38+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2014-03-03T18:25:38+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-05T18:20:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSE Infrastructure 2.0",
"product": {
"name": "RHOSE Infrastructure 2.0",
"product_id": "6Server-RHOSE-INFRA-2.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:2.0::el6"
}
}
},
{
"category": "product_name",
"name": "RHOSE Node 2.0",
"product": {
"name": "RHOSE Node 2.0",
"product_id": "6Server-RHOSE-NODE-2.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:2.0::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"product": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"product_id": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/activemq@5.9.0-4.redhat.610328.el6op?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product": {
"name": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product_id": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/activemq-client@5.9.0-4.redhat.610328.el6op?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product_id": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/activemq@5.9.0-4.redhat.610328.el6op?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.src as a component of RHOSE Infrastructure 2.0",
"product_id": "6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src"
},
"product_reference": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"relates_to_product_reference": "6Server-RHOSE-INFRA-2.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64 as a component of RHOSE Infrastructure 2.0",
"product_id": "6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64"
},
"product_reference": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"relates_to_product_reference": "6Server-RHOSE-INFRA-2.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64 as a component of RHOSE Infrastructure 2.0",
"product_id": "6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
},
"product_reference": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"relates_to_product_reference": "6Server-RHOSE-INFRA-2.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.src as a component of RHOSE Node 2.0",
"product_id": "6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src"
},
"product_reference": "activemq-0:5.9.0-4.redhat.610328.el6op.src",
"relates_to_product_reference": "6Server-RHOSE-NODE-2.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64 as a component of RHOSE Node 2.0",
"product_id": "6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64"
},
"product_reference": "activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"relates_to_product_reference": "6Server-RHOSE-NODE-2.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64 as a component of RHOSE Node 2.0",
"product_id": "6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
},
"product_reference": "activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"relates_to_product_reference": "6Server-RHOSE-NODE-2.0"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Florian Weimer"
],
"organization": "Red Hat Product Security Team",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2013-2035",
"cwe": {
"id": "CWE-377",
"name": "Insecure Temporary File"
},
"discovery_date": "2013-04-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "958618"
}
],
"notes": [
{
"category": "description",
"text": "The HawtJNI Library class wrote native libraries to a predictable file name in /tmp when the native libraries were bundled in a JAR file, and no custom library path was specified. A local attacker could overwrite these native libraries with malicious versions during the window between when HawtJNI writes them and when they are executed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HawtJNI: predictable temporary file name leading to local arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2035"
},
{
"category": "external",
"summary": "RHBZ#958618",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=958618"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2035",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2035"
}
],
"release_date": "2013-05-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-03-03T18:25:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0245"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "HawtJNI: predictable temporary file name leading to local arbitrary code execution"
},
{
"cve": "CVE-2013-4152",
"discovery_date": "2013-08-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1000186"
}
],
"notes": [
{
"category": "description",
"text": "The Spring OXM wrapper in Spring Framework before 3.2.4 and 4.0.0.M1, when using the JAXB marshaller, does not disable entity resolution, which allows context-dependent attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via an XML external entity declaration in conjunction with an entity reference in a (1) DOMSource, (2) StAXSource, (3) SAXSource, or (4) StreamSource, aka an XML External Entity (XXE) issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Framework: XML External Entity (XXE) injection flaw",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4152"
},
{
"category": "external",
"summary": "RHBZ#1000186",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1000186"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4152",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4152"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4152",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4152"
},
{
"category": "external",
"summary": "http://www.gopivotal.com/security/cve-2013-4152",
"url": "http://www.gopivotal.com/security/cve-2013-4152"
},
{
"category": "external",
"summary": "https://github.com/SpringSource/spring-framework/pull/317",
"url": "https://github.com/SpringSource/spring-framework/pull/317"
},
{
"category": "external",
"summary": "https://jira.springsource.org/browse/SPR-10806",
"url": "https://jira.springsource.org/browse/SPR-10806"
}
],
"release_date": "2013-08-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-03-03T18:25:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0245"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "Framework: XML External Entity (XXE) injection flaw"
},
{
"cve": "CVE-2013-4330",
"discovery_date": "2013-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1011726"
}
],
"notes": [
{
"category": "description",
"text": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Camel: remote code execution via header field manipulation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-4330"
},
{
"category": "external",
"summary": "RHBZ#1011726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1011726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4330"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330"
}
],
"release_date": "2013-09-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-03-03T18:25:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0245"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Camel: remote code execution via header field manipulation"
},
{
"acknowledgments": [
{
"names": [
"David Jorm"
],
"organization": "Red Hat Security Response Team",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2014-0003",
"discovery_date": "2014-01-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1049692"
}
],
"notes": [
{
"category": "description",
"text": "The XSLT component in Apache Camel 2.11.x before 2.11.4, 2.12.x before 2.12.3, and possibly earlier versions allows remote attackers to execute arbitrary Java methods via a crafted message.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Camel: remote code execution via XSL",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-0003"
},
{
"category": "external",
"summary": "RHBZ#1049692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1049692"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-0003",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0003"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-0003",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0003"
},
{
"category": "external",
"summary": "http://camel.apache.org/security-advisories.data/CVE-2014-0003.txt.asc",
"url": "http://camel.apache.org/security-advisories.data/CVE-2014-0003.txt.asc"
}
],
"release_date": "2014-02-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2014-03-03T18:25:38+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258",
"product_ids": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2014:0245"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-INFRA-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-INFRA-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.src",
"6Server-RHOSE-NODE-2.0:activemq-0:5.9.0-4.redhat.610328.el6op.x86_64",
"6Server-RHOSE-NODE-2.0:activemq-client-0:5.9.0-4.redhat.610328.el6op.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Camel: remote code execution via XSL"
}
]
}
ghsa-x9fv-c87w-55wc
Vulnerability from github
Published
2022-05-13 01:26
Modified
2023-12-19 21:58
Summary
Improper Control of Generation of Code in Apache Camel
Details
Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including "$simple{}" in a CamelFileName message header to a (1) FILE or (2) FTP producer.
{
"affected": [
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.camel:camel-core"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.9.7"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.camel:camel-core"
},
"ranges": [
{
"events": [
{
"introduced": "2.10.0"
},
{
"fixed": "2.10.7"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.camel:camel-core"
},
"ranges": [
{
"events": [
{
"introduced": "2.11.0"
},
{
"fixed": "2.11.2"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.camel:camel-core"
},
"ranges": [
{
"events": [
{
"introduced": "2.12.0"
},
{
"fixed": "2.12.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.12.0"
]
}
],
"aliases": [
"CVE-2013-4330"
],
"database_specific": {
"cwe_ids": [
"CWE-94"
],
"github_reviewed": true,
"github_reviewed_at": "2022-07-08T19:19:37Z",
"nvd_published_at": "2013-10-04T17:55:00Z",
"severity": "MODERATE"
},
"details": "Apache Camel before 2.9.7, 2.10.0 before 2.10.7, 2.11.0 before 2.11.2, and 2.12.0 allows remote attackers to execute arbitrary simple language expressions by including \"$simple{}\" in a CamelFileName message header to a (1) FILE or (2) FTP producer.",
"id": "GHSA-x9fv-c87w-55wc",
"modified": "2023-12-19T21:58:02Z",
"published": "2022-05-13T01:26:34Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4330"
},
{
"type": "WEB",
"url": "https://github.com/apache/camel/commit/2281b1f365c50ee1a470fb9990b753eadee9095"
},
{
"type": "WEB",
"url": "https://github.com/apache/camel/commit/27a9752a565fbef436bac4fcf22d339e3295b2a"
},
{
"type": "WEB",
"url": "https://github.com/apache/camel/commit/3215fe50dd42c83a7a454dd36486843fe36eae4"
},
{
"type": "WEB",
"url": "https://github.com/apache/camel/commit/5ba8f63f78f82b0cddf6cecbf59ac444a0cae2a6"
},
{
"type": "WEB",
"url": "https://github.com/apache/camel/commit/ce19353f1297c5d3dc59be21a1ead89c0a44907"
},
{
"type": "WEB",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87542"
},
{
"type": "WEB",
"url": "https://github.com/apache/camel"
},
{
"type": "WEB",
"url": "https://issues.apache.org/jira/browse/CAMEL-6748"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf%40%3Ccommits.camel.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/2318d7f7d87724d8716cd650c21b31cb06e4d34f6d0f5ee42f28fdaf@%3Ccommits.camel.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d%40%3Ccommits.camel.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/b4014ea7c5830ca1fc28edd5cafedfe93ad4af2d9e69c961c5def31d@%3Ccommits.camel.apache.org%3E"
},
{
"type": "WEB",
"url": "http://camel.apache.org/security-advisories.data/CVE-2013-4330.txt.asc?version=1\u0026modificationDate=1380535446943"
},
{
"type": "WEB",
"url": "http://packetstormsecurity.com/files/123454"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1862.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0124.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0140.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0245.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0254.html"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2013/Sep/178"
}
],
"schema_version": "1.4.0",
"severity": [],
"summary": "Improper Control of Generation of Code in Apache Camel"
}
Loading...
Loading...
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.