CVE-2018-10862

Published: Jul 27, 2018Modified: Nov 21, 2024

5.5

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

WildFly Core before version 6.0.0.Alpha3 does not properly validate file paths in .war archives, allowing for the extraction of crafted .war archives to overwrite arbitrary files. This is an instance of the 'Zip Slip' vulnerability.

Affected (5)

Products: Redhat: Virtualization, Jboss Enterprise Application Platform, Wildfly Core

Redhat

3 products

Virtualization

Jboss Enterprise Application Platform

Wildfly Core

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Redhat Virtualization	Version 4.0

Configuration B

1 platform

Running on/with	Platform Versions
Redhat Enterprise Linux	Version 6.0

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Redhat Jboss Enterprise Application Platform	Version 7.1.0

Running on/with	Platform Versions
Redhat Enterprise Linux	Version 7.0

Configuration D

3 vulnerable

Vulnerable Software	Affected Versions
Redhat Wildfly Core	Up to 5.0.0
Redhat Wildfly Core	Version 6.0.0 alpha1
Redhat Wildfly Core	Version 6.0.0 alpha2

Related CWEs

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (22)

https://access.redhat.com/errata/RHSA-2018:2276

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:2277

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:2279

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:2423

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:2424

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:2425

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:2428

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2018:2643

Source: secalert@redhat.com

Vendor Advisory

https://access.redhat.com/errata/RHSA-2019:0877

Source: secalert@redhat.com

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10862

Source: secalert@redhat.com

Issue TrackingVendor Advisory

https://snyk.io/research/zip-slip-vulnerability

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2276