It was found that the explode function of the deployment utility in jboss-cli and console that allows extraction of files from an archive does not perform necessary validation for directory traversal. This can lead to remote code execution.
Find out more about CVE-2018-10862 from the MITRE CVE dictionary dictionary and NIST NVD.
This vulnerability can only be exploited by users with deployment permissions.
CVSS3 Base Score | 7.6 |
---|---|
CVSS3 Base Metrics | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L |
Attack Vector | Network |
Attack Complexity | Low |
Privileges Required | Low |
User Interaction | None |
Scope | Unchanged |
Confidentiality | Low |
Integrity Impact | High |
Availability Impact | Low |
Platform | Errata | Release Date |
---|---|---|
Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts (rhvm-appliance) | RHSA-2018:2643 | 2018-09-04 |
Red Hat JBoss EAP 7.1 | RHSA-2018:2277 | 2018-07-26 |
Red Hat JBoss Enterprise Application Platform 7.0 for RHEL 7 Server (eap7-wildfly) | RHSA-2018:2424 | 2018-08-15 |
Red Hat JBoss Enterprise Application Platform 7.0 for RHEL 6 Server (eap7-wildfly) | RHSA-2018:2423 | 2018-08-15 |
Red Hat JBoss Enterprise Application Platform 7.0 for RHEL 7 Server (eap7-wildfly) | RHSA-2018:2276 | 2018-07-26 |
Red Hat Single Sign-On 7.2 | RHSA-2018:2279 | 2018-07-26 |
Red Hat JBoss Enterprise Application Platform 7.0 for RHEL 6 Server (eap7-wildfly) | RHSA-2018:2276 | 2018-07-26 |
Red Hat Single Sign-On 7.2 | RHSA-2018:2428 | 2018-08-15 |
Red Hat JBoss EAP 7.1 | RHSA-2018:2425 | 2018-08-15 |
Platform | Package | State |
---|---|---|
Red Hat Virtualization 4 | eap7-wildfly | Affected |
Red Hat Single Sign-On 7 | wildfly | Affected |
Red Hat OpenShift Application Runtimes 1.0 | swarm | Affected |
Red Hat JBoss Operations Network 3 | wildfly | Not affected |
Red Hat JBoss Fuse 7 | wildfly | Not affected |
Red Hat JBoss Fuse 6 | wildfly | Not affected |
Red Hat JBoss EAP 6 | wildfly | Not affected |
Red Hat JBoss Data Virtualization 6 | wildfly | Under investigation |
Red Hat JBoss Data Grid 7 | wildfly | Under investigation |
Red Hat JBoss Data Grid 6 | wildfly | Not affected |
Red Hat JBoss BRMS 6 | wildfly | Not affected |
Red Hat JBoss BPMS 6 | wildfly | Not affected |