Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

Required

Privileges Required

None

Attack Vector

Network

0

CVE-2010-1871

Disclosure Date: August 05, 2010 •

CVE-2010-1871 CVSS v3 Base Score: 8.8

Exploited in the Wild

Reported by gwillcox-r7 and 1 more...
View Source Details

Description

JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 4.3.0 for Red Hat Linux, does not properly sanitize inputs for JBoss Expression Language (EL) expressions, which allows remote attackers to execute arbitrary code via a crafted URL. NOTE: this is only a vulnerability when the Java Security Manager is not properly configured.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

8.8 High

Impact Score:

5.9

Exploitability Score:

2.8

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

Required

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

Vendors

Products

Metasploit Modules

JBoss Seam 2 File Upload and Execute (https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/jboss_seam_upload_exec.rb)

JBoss Seam 2 Remote Command Execution (https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/jboss_seam_exec.rb)

Exploited in the Wild

Reported by:

gwillcox-r7 indicated sources as

Reported: December 06, 2021 3:25pm UTC (3 years ago) • Edited 3 years ago

AttackerKB Worker indicated source as Government or Industry Alert (https://www.cisa.gov/news-events/alerts/2021/12/10/cisa-adds-13-known-exploited-vulnerabilities-catalog)

Reported: November 08, 2024 8:19am UTC (3 months ago)

References

Canonical

CVE-2010-1871 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1871)

BID-41994 (http://www.securityfocus.com/bid/41994)

Advisory

20130528 CA20130528-01: Security Notice for CA Process Automation (CA PAM) (http://archives.neohapsis.com/archives/bugtraq/2013-05/0117.html)

SECTRACK-1024253 (http://www.securitytracker.com/id?1024253)

ADV-2010-1929 (http://www.vupen.com/english/advisories/2010/1929)

https://bugzilla.redhat.com/show_bug.cgi?id=615956

XF-seam-expressions-code-execution(60794) (https://exchange.xforce.ibmcloud.com/vulnerabilities/60794)

http://www.redhat.com/support/errata/RHSA-2010-0564.html

https://security.netapp.com/advisory/ntap-20161017-0001

Rapid7

Technical Analysis