CVE-2017-12149
CVE-2017-12149
In short
JBoss application servers can be tricked into running malicious code hidden in specially crafted data. An attacker can send this data and the server will automatically execute it without proper safety checks.
Technical detail
CVE-2017-12149 exploits unsafe deserialization in JBoss Application Server's HTTP Invoker ReadOnlyAccessFilter. The doFilter method lacks class validation during object deserialization, enabling arbitrary code execution through malicious serialized payloads. No authentication is required; the vulnerability is network-accessible.
Summary generated and translated by AI from the official description.
In Jboss Application Server as shipped with Red Hat Enterprise Application Platform 5.2, it was found that the doFilter method in the ReadOnlyAccessFilter of the HTTP Invoker does not restrict classes for which it performs deserialization and thus allowing an attacker to execute arbitrary code via crafted serialized data.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Red Hat, Inc. · jbossaspublic PoCs found — 10
githubgithub.com/yunxu1/jboss-_CVE-2017-12149★ 210githubgithub.com/sevck/CVE-2017-12149★ 22githubgithub.com/1337g/CVE-2017-12149★ 15githubgithub.com/jreppiks/CVE-2017-12149★ 13githubgithub.com/JesseClarkND/CVE-2017-12149★ 0githubgithub.com/zesnd/cve-2017-12149★ 0githubgithub.com/galois17/cve-2017-12149-playground★ 0githubgithub.com/Xcatolin/jboss-deserialization★ 0githubgithub.com/VVeakee/CVE-2017-12149★ 0githubgithub.com/MrE-Fog/jboss-_CVE-2017-12149★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://access.redhat.com/errata/RHSA-2018:1607https://access.redhat.com/errata/RHSA-2018:1608https://bugzilla.redhat.com/show_bug.cgi?id=1486220https://github.com/gottburgm/Exploits/tree/master/CVE-2017-12149https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-12149http://www.securityfocus.com/bid/100591