Description

WildFly Core before version 6.0.0.Alpha3 does not properly validate file paths in .war archives, allowing for the extraction of crafted .war archives to overwrite arbitrary files. This is an instance of the 'Zip Slip' vulnerability.

Remediation

References

https://access.redhat.com/errata/RHSA-2018:2276

https://access.redhat.com/errata/RHSA-2018:2277

https://access.redhat.com/errata/RHSA-2018:2279

https://access.redhat.com/errata/RHSA-2018:2423

https://access.redhat.com/errata/RHSA-2018:2424

https://access.redhat.com/errata/RHSA-2018:2425

https://access.redhat.com/errata/RHSA-2018:2428

https://access.redhat.com/errata/RHSA-2018:2643

https://access.redhat.com/errata/RHSA-2019:0877

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10862

https://snyk.io/research/zip-slip-vulnerability

Related Vulnerabilities

CVE-2023-30532 Vulnerability in maven package org.jenkinsci.plugins.spoonscript:spoonscript

CVE-2017-2650 Vulnerability in maven package cprice404:pipeline-classpath

CVE-2022-29546 Vulnerability in maven package net.sourceforge.htmlunit:neko-htmlunit

CVE-2021-41193 Vulnerability in maven package com.wire:avs

CVE-2023-32070 Vulnerability in maven package org.xwiki.rendering:xwiki-rendering-syntax-html5

Severity

Medium

Classification

CWE-22 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Tags

Vendor Advisory Issue Tracking Third Party Advisory