Description
The hotrod java client in infinispan before 9.1.0.Final automatically deserializes bytearray message contents in certain events. A malicious user could exploit this flaw by injecting a specially-crafted serialized object to attain remote code execution or conduct other attacks.
CVSS breakdown
CVSS 3.0
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
None
Affected products
- Red Hat / infinispan9.1.0.Final – 9.1.0.Final
References
- MISChttps://issues.jboss.org/browse/ISPN-7781
- MISChttp://www.securityfocus.com/bid/101910
- PATCHhttps://github.com/infinispan/infinispan/pull/5116
- VENDOR_ADVISORYhttps://access.redhat.com/errata/RHSA-2018:0501
- VENDOR_ADVISORYhttps://access.redhat.com/errata/RHSA-2017:3244
- MISChttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-0750