CVE-2021-34427

Published: Jun 25, 2021Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

In Eclipse BIRT versions 4.8.0 and earlier, an attacker can use query parameters to create a JSP file which is accessible from remote (current BIRT viewer dir) to inject JSP code into the running instance.

Affected (1)

Products: Eclipse: Business Intelligence And Reporting Tools

Eclipse

1 product

Business Intelligence And Reporting Tools

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Eclipse Business Intelligence And Reporting Tools	Up to 4.8.0

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

CWE-434

Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

References (6)

http://packetstormsecurity.com/files/170326/Eclipse-Business-Intelligence-Reporting-Tool-4.11.0-Remote-Code-Execution.html

Source: emo@eclipse.org

ExploitThird Party Advisory

http://seclists.org/fulldisclosure/2022/Dec/30

Source: emo@eclipse.org

ExploitMailing ListThird Party Advisory

https://bugs.eclipse.org/bugs/show_bug.cgi?id=538142

Source: emo@eclipse.org

ExploitIssue TrackingPatchVendor Advisory

http://packetstormsecurity.com/files/170326/Eclipse-Business-Intelligence-Reporting-Tool-4.11.0-Remote-Code-Execution.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

http://seclists.org/fulldisclosure/2022/Dec/30

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitMailing ListThird Party Advisory

https://bugs.eclipse.org/bugs/show_bug.cgi?id=538142

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingPatchVendor Advisory

Timeline

No history available yet.