CVE-2020-9297
Last modified
CVE-2020-9297 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Netflix Titus, all versions prior to version v0.1.1-rc.274, uses Java Bean Validation (JSR 380) custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Java EL expressions. EPSS estimates a 1.66% chance of exploitation in the next 30 days.
Description
Netflix Titus, all versions prior to version v0.1.1-rc.274, uses Java Bean Validation (JSR 380) custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Java EL expressions. If an attacker can inject arbitrary data in the error message template being passed to ConstraintValidatorContext.buildConstraintViolationWithTemplate() argument, they will be able to run arbitrary Java code.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Netflix | Titus | <= 0.1.0 |
| Netflix | Titus | 0.1.1 |
References
- https://github.com/Netflix/security-bulletins/blob/master/advisories/nflx-2020-002.mdPatch, Third Party Advisory
- https://github.com/Netflix/security-bulletins/blob/master/advisories/nflx-2020-002.mdPatch, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-9297?
How severe is CVE-2020-9297?
How do I fix CVE-2020-9297?
Are you affected by CVE-2020-9297?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST