Published: 04/05/2020 Updated: 21/07/2021

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

A Server-Side Template Injection was identified in Apache Syncope before 2.1.6 enabling malicious users to inject arbitrary Java EL expressions, leading to an unauthenticated Remote Code Execution (RCE) vulnerability. Apache Syncope uses Java Bean Validation (JSR 380) custom constraint validators. When building custom constraint violation error messages, they support different types of interpolation, including Java EL expressions. Therefore, if an attacker can inject arbitrary data in the error message template being passed, they will be able to run arbitrary Java code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache syncope

oss-sec mailing list archives   By Date By Thread </form>    [CVE-2020-1959] Apache Syncope: Multiple Remote Code Execution Vulnerabilities  <!--X-Head-of-Messa ...

CWE-917 http://syncope.apache.org/security https://nvd.nist.gov http://seclists.org/oss-sec/2020/q2/83

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-1959

Vulnerability Summary

Vulnerability Trend

Mailing Lists

References

Vulmon Search

About

Products

Connect