CVE-2018-1321

Description

An administrator with report and template entitlements in Apache Syncope 1.2.x before 1.2.11, 2.0.x before 2.0.8, and unsupported releases 1.0.x and 1.1.x which may be also affected, can use XSL Transformations (XSLT) to perform malicious operations, including but not limited to file read, file write, and code execution.

Affected products

• Apache Software Foundation / Apache SyncopeReleases prior to 1.2.11, Releases prior to 2.0.8 – Releases prior to 1.2.11, Releases prior to 2.0.8
• Apache Software Foundation / Apache SyncopeThe unsupported Releases 1.0.x, 1.1.x may be also affected. – The unsupported Releases 1.0.x, 1.1.x may be also affected.

References

• MISChttp://www.securityfocus.com/bid/103508
• MISChttp://syncope.apache.org/security.html#CVE-2018-1321:_Remote_code_execution_by_administrators_with_report_and_template_entitlements
• EXPLOIThttps://www.exploit-db.com/exploits/45400/