Vulnerability

CVE-2018-12533

 Report advisory or correction

CVSS Score 9.8 critical

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-917

References

https://bugzilla.redhat.com/show_bug.cgi?id=1584490
https://codewhitesec.blogspot.com/2018/05/poor-richfaces.html
https://www.lucifaer.com/2018/12/05/RF-14310%EF%BC%88CVE-2018-12533%EF%BC%89%E5%88%86%E6%9E%90/
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-12533

[CVE-2018-12533] CWE-917: Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')

Description

JBoss RichFaces 3.1.0 through 3.3.4 allows unauthenticated remote attackers to inject expression language (EL) expressions and execute arbitrary Java code via a /DATA/ substring in a path with an org.richfaces.renderkit.html.Paint2DResource$ImageData object, aka RF-14310.

See org.richfaces.ui/richfaces-ui package information