CVE-2018-1313

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 07-05-2018 03:29

Last modified: - 18-04-2022 07:30

Total changes: - 3

Description

In Apache Derby 10.3.1.4 to 10.14.1.0, a specially-crafted network packet can be used to request the Derby Network Server to boot a database whose location and contents are under the user's control. If the Derby Network Server is not running with a Java Security Manager policy file, the attack is successful. If the server is using a policy file, the policy file must permit the database location to be read for the attack to work. The default Derby Network Server policy file distributed with the affected releases includes a permissive policy as the default Network Server policy, which allows the attack to work.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N

High

Attack complexity

Network

Attack vector

None

Availability

None

Confidentiality

High

Integrity

Low

Privileges required

Unchanged

Scope

None

User interaction

5.3

Base score

1.6

3.6

Exploitability score

Impact score

Verification logic

vendor=apache AND product=derby AND versionEndIncluding=10.14.1.0 AND versionStartIncluding=10.3.1.4

vendor=oracle AND product=weblogic_server AND version=12.2.1.3

Reference

[derby-user] 20180505 [ANNOUNCE] CVE-2018-1313: Apache Derby externally-controlled input vulnerability-Mitigation, Third Party Advisory
104140-Broken Link
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities-Mailing List, Vendor Advisory
[drill-dev] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities-Mailing List, Vendor Advisory
[hive-dev] 20211007 [jira] [Created] (HIVE-25597) Bump Apache Derby 10.14.1.0 to 10.14.2.0 CVE-2018-1313-Mailing List, Vendor Advisory
[drill-issues] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities-Mailing List, Vendor Advisory
[hive-issues] 20211007 [jira] [Assigned] (HIVE-25597) Bump Apache Derby 10.14.1.0 to 10.14.2.0 CVE-2018-1313-Mailing List, Vendor Advisory
[hive-issues] 20211007 [jira] [Commented] (HIVE-25597) Bump Apache Derby 10.14.1.0 to 10.14.2.0 CVE-2018-1313-Mailing List, Vendor Advisory

Keywords

CVE-2018-1313

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2018-1313

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures