Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES SCA (Software Composition Analysis)

CVE-2020-9296 Vulnerability in maven package com.netflix.conductor:conductor-core

Description

Netflix Titus uses Java Bean Validation (JSR 380) custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Java EL expressions. If an attacker can inject arbitrary data in the error message template being passed to ConstraintValidatorContext.buildConstraintViolationWithTemplate() argument, they will be able to run arbitrary Java code.

Remediation

References

https://github.com/Netflix/security-bulletins/blob/master/advisories/nflx-2020-002.md

Related Vulnerabilities

CVE-2017-16222 Vulnerability in npm package elding

CVE-2019-1003081 Vulnerability in maven package org.jenkins-ci.plugins:openshift-deployer

CVE-2017-5662 Vulnerability in maven package org.apache.xmlgraphics:batik-rasterizer

CVE-2020-11972 Vulnerability in maven package org.apache.camel:camel-rabbitmq

CVE-2020-7615 Vulnerability in npm package fsa

Severity

Critical

Classification

CWE-917 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Third Party Advisory