CVE-2017-18349
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
parseObject in Fastjson before 1.2.25, as used in FastjsonEngine in Pippo 1.11.0 and other products, allows remote attackers to execute arbitrary code via a crafted JSON request, as demonstrated by a crafted rmi:// URI in the dataSourceName field of HTTP POST data to the Pippo /json URI, which is mishandled in AjaxApplication.java.
parseObject en Fastjson en versiones anteriores a la 1.2.25, tal y como se emplea en FastjsonEngine en Pippo 1.11.0 y otros productos, permite que atacantes remotos ejecuten código arbitrario mediante una petición JSON manipulada, tal y como queda demostrado con un URI rmi:// manipulado en el campo dataSourceName de los datos HTTP POST en el URI Pippo /json, que se gestiona de manera incorrecta en AjaxApplication.java.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-10-23 CVE Reserved
- 2018-10-23 CVE Published
- 2022-04-15 First Exploit
- 2024-09-17 CVE Updated
- 2024-11-07 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-20: Improper Input Validation
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| https://fortiguard.com/encyclopedia/ips/44059 | Mitigation | |
| https://github.com/alibaba/fastjson/wiki/security_update_20170315 | Mitigation |
| URL | Date | SRC |
|---|---|---|
| https://github.com/h0cksr/Fastjson--CVE-2017-18349- | 2022-04-15 | |
| https://github.com/pippo-java/pippo/issues/466 | 2024-09-17 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Alibaba Search vendor "Alibaba" | Fastjson Search vendor "Alibaba" for product "Fastjson" | < 1.2.25 Search vendor "Alibaba" for product "Fastjson" and version " < 1.2.25" | - |
Affected
| ||||||
| Pippo Search vendor "Pippo" | Pippo Search vendor "Pippo" for product "Pippo" | 1.11.0 Search vendor "Pippo" for product "Pippo" and version "1.11.0" | - |
Affected
| ||||||