CVE-2014-3558
Validator: JSM bypass via ReflectionHelper
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
ReflectionHelper (org.hibernate.validator.util.ReflectionHelper) in Hibernate Validator 4.1.0 before 4.2.1, 4.3.x before 4.3.2, and 5.x before 5.1.2 allows attackers to bypass Java Security Manager (JSM) restrictions and execute restricted reflection calls via a crafted application.
ReflectionHelper (org.hibernate.validator.util.ReflectionHelper) en Hibernate Validator 4.1.0 anterior a 4.2.1, 4.3.x anterior a 4.3.2, y 5.x anterior a 5.1.2 permite a atacantes evadir las restricciones de Java Security Manager (JSM) y ejecutar llamadas de reflección restringidas a través de una aplicación manipulada.
It was discovered that the implementation of org.hibernate.validator.util.ReflectionHelper together with the permissions required to run Hibernate Validator under the Java Security Manager could allow a malicious application deployed in the same application container to execute several actions with escalated privileges, which might otherwise not be possible. This flaw could be used to perform various attacks, including but not restricted to, arbitrary code execution in systems that are otherwise secured by the Java Security Manager.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2014-05-14 CVE Reserved
- 2014-09-24 CVE Published
- 2024-08-06 CVE Updated
- 2024-08-12 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
- CWE-266: Incorrect Privilege Assignment
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| https://github.com/victims/victims-cve-db/blob/master/database/java/2014/3558.yaml | Third Party Advisory | |
| https://hibernate.atlassian.net/browse/HV-912 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://rhn.redhat.com/errata/RHSA-2014-1285.html | 2019-03-21 | |
| http://rhn.redhat.com/errata/RHSA-2014-1286.html | 2019-03-21 | |
| http://rhn.redhat.com/errata/RHSA-2014-1287.html | 2019-03-21 | |
| http://rhn.redhat.com/errata/RHSA-2014-1288.html | 2019-03-21 | |
| http://rhn.redhat.com/errata/RHSA-2015-0125.html | 2019-03-21 | |
| http://rhn.redhat.com/errata/RHSA-2015-0720.html | 2019-03-21 | |
| https://access.redhat.com/security/cve/CVE-2014-3558 | 2015-03-24 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1120495 | 2015-03-24 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Redhat Search vendor "Redhat" | Hibernate Validator Search vendor "Redhat" for product "Hibernate Validator" | >= 4.3.0 < 4.3.2 Search vendor "Redhat" for product "Hibernate Validator" and version " >= 4.3.0 < 4.3.2" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Hibernate Validator Search vendor "Redhat" for product "Hibernate Validator" | >= 5.0.0 <= 5.0.3 Search vendor "Redhat" for product "Hibernate Validator" and version " >= 5.0.0 <= 5.0.3" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Hibernate Validator Search vendor "Redhat" for product "Hibernate Validator" | >= 5.1.0 < 5.1.2 Search vendor "Redhat" for product "Hibernate Validator" and version " >= 5.1.0 < 5.1.2" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Hibernate Validator Search vendor "Redhat" for product "Hibernate Validator" | 4.1.0 Search vendor "Redhat" for product "Hibernate Validator" and version "4.1.0" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Hibernate Validator Search vendor "Redhat" for product "Hibernate Validator" | 4.2.0 Search vendor "Redhat" for product "Hibernate Validator" and version "4.2.0" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Hibernate Validator Search vendor "Redhat" for product "Hibernate Validator" | 4.2.0 Search vendor "Redhat" for product "Hibernate Validator" and version "4.2.0" | beta1 |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Hibernate Validator Search vendor "Redhat" for product "Hibernate Validator" | 4.2.0 Search vendor "Redhat" for product "Hibernate Validator" and version "4.2.0" | beta2 |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Hibernate Validator Search vendor "Redhat" for product "Hibernate Validator" | 4.2.0 Search vendor "Redhat" for product "Hibernate Validator" and version "4.2.0" | cr1 |
Affected
| ||||||