CVE-2017-7657
Last modified
CVE-2017-7657 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations), and 9.4.x (non-default configuration with RFC2616 compliance enabled), transfer-encoding chunks are handled poorly. The chunk length parsing was vulnerable to an integer overflow. EPSS estimates a 16.15% chance of exploitation in the next 30 days.
Description
In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations), and 9.4.x (non-default configuration with RFC2616 compliance enabled), transfer-encoding chunks are handled poorly. The chunk length parsing was vulnerable to an integer overflow. Thus a large chunk size could be interpreted as a smaller chunk size and content sent as chunk body could be interpreted as a pipelined request. If Jetty was deployed behind an intermediary that imposed some authorization and that intermediary allowed arbitrarily large chunks to be passed on unchanged, then this flaw could be used to bypass the authorization imposed by the intermediary as the fake pipelined request would not be interpreted by the intermediary as a request.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Eclipse | Jetty | <= 9.2.26 |
| Eclipse | Jetty | >= 9.3.0, < 9.3.24 |
| Eclipse | Jetty | >= 9.4.0, < 9.4.11 |
| Debian | Debian Linux | 9.0 |
| Netapp | E-Series Santricity Management | All versions |
| Netapp | E-Series Santricity Os Controller | >= 11.0, <= 11.50.1 |
| Netapp | E-Series Santricity Web Services | All versions |
| Netapp | Element Software | All versions |
| Netapp | Element Software Management Node | All versions |
| Netapp | Hci Storage Nodes | All versions |
| Netapp | Oncommand System Manager | 3.x |
| Netapp | Oncommand Unified Manager | < 5.2.4 |
| Netapp | Santricity Cloud Connector | All versions |
| Netapp | Snap Creator Framework | < 4.3.3 |
| Netapp | Snapcenter | < 4.1p3 |
| Netapp | Snapmanager | < 3.4.2 |
| Hp | Xp P9000 Command View | >= 8.4.0-00, < 8.6.2-00 |
| Oracle | Rest Data Services | 11.2.0.4 |
| Oracle | Rest Data Services | 12.1.0.2 |
| Oracle | Rest Data Services | 12.2.0.1 |
| Oracle | Rest Data Services | 18c |
| Oracle | Retail Xstore Point Of Service | 7.1 |
| Oracle | Retail Xstore Point Of Service | 15.0 |
| Oracle | Retail Xstore Point Of Service | 16.0 |
| Oracle | Retail Xstore Point Of Service | 17.0 |
References
- http://www.securitytracker.com/id/1041194Third Party Advisory, VDB Entry
- https://access.redhat.com/errata/RHSA-2019:0910Third Party Advisory
- https://bugs.eclipse.org/bugs/show_bug.cgi?id=535668Third Party Advisory
- https://security.netapp.com/advisory/ntap-20181014-0001/Patch, Third Party Advisory
- https://www.debian.org/security/2018/dsa-4278Third Party Advisory
- https://www.oracle.com/security-alerts/cpuoct2020.htmlPatch, Third Party Advisory
- https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.htmlPatch, Third Party Advisory
- http://www.securitytracker.com/id/1041194Third Party Advisory, VDB Entry
- https://access.redhat.com/errata/RHSA-2019:0910Third Party Advisory
- https://bugs.eclipse.org/bugs/show_bug.cgi?id=535668Third Party Advisory
- https://security.netapp.com/advisory/ntap-20181014-0001/Patch, Third Party Advisory
- https://www.debian.org/security/2018/dsa-4278Third Party Advisory
- https://www.oracle.com/security-alerts/cpuoct2020.htmlPatch, Third Party Advisory
- https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.htmlPatch, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-7657?
How severe is CVE-2017-7657?
How do I fix CVE-2017-7657?
Are you affected by CVE-2017-7657?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST