CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
---|---|---|
5.7 | $0-$5k | 0.00 |
A vulnerability was found in Red Hat hawtjni up to 1.7. It has been declared as problematic. Affected by this vulnerability is an unknown functionality in the library hawtjni-runtime/src/main/java/org/fusesource/hawtjni/runtime/Library.java. The manipulation with an unknown input leads to a code injection vulnerability. The CWE definition for the vulnerability is CWE-94. The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:
Race condition in hawtjni-runtime/src/main/java/org/fusesource/hawtjni/runtime/Library.java in HawtJNI before 1.8, when a custom library path is not specified, allows local users to execute arbitrary Java code by overwriting a temporary JAR file with a predictable name in /tmp.
The weakness was disclosed 08/28/2013 by Florian Weimer (Website). It is possible to read the advisory at github.com. This vulnerability is known as CVE-2013-2035 since 02/19/2013. Attacking locally is a requirement. The exploitation doesn't need any form of authentication. Technical details of the vulnerability are known, but there is no available exploit. The attack technique deployed by this issue is T1059 according to MITRE ATT&CK.
The vulnerability scanner Nessus provides a plugin with the ID 71224 (RHEL 5 : JBoss EAP (RHSA-2013:1785)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Red Hat Local Security Checks.
Upgrading to version 1.5 eliminates this vulnerability.
The vulnerability is also documented in the databases at X-Force (84272) and Tenable (71224). The entries 11422 and 65204 are pretty similar.
Product
Vendor
Name
Version
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB CVSS-B Score: 🔍VulDB CVSS-BT Score: 🔍
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.9VulDB Meta Temp Score: 5.7
VulDB Base Score: 5.9
VulDB Temp Score: 5.7
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
AV | AC | Au | C | I | A |
---|---|---|---|---|---|
💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|
unlock | unlock | unlock | unlock | unlock | unlock |
unlock | unlock | unlock | unlock | unlock | unlock |
unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Code injectionCWE: CWE-94 / CWE-74 / CWE-707
ATT&CK: T1059
Local: Yes
Remote: No
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
0-Day | unlock | unlock | unlock | unlock |
---|---|---|---|---|
Today | unlock | unlock | unlock | unlock |
Nessus ID: 71224
Nessus Name: RHEL 5 : JBoss EAP (RHSA-2013:1785)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Port: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: hawtjni 1.5
Patch: github.com
Timeline
02/19/2013 🔍05/14/2013 🔍
05/14/2013 🔍
08/28/2013 🔍
08/28/2013 🔍
12/05/2013 🔍
01/14/2014 🔍
03/24/2015 🔍
01/07/2022 🔍
Sources
Vendor: redhat.comAdvisory: RHSA-2013:1785
Researcher: Florian Weimer
Status: Not defined
Confirmation: 🔍
CVE: CVE-2013-2035 (🔍)
X-Force: 84272
SecurityTracker: 1029431
Vulnerability Center: 42875 - HawtJNI Before 1.8 as Used in JBEAP Before 6.1.1 Local Arbitrary Code Execution via an Overwrite of a Temporary JAR File, Medium
SecurityFocus: 59876 - HawtJNI CVE-2013-2035 Local Privilege Escalation Vulnerability
Secunia: 53415
OSVDB: 93411
See also: 🔍
Entry
Created: 03/24/2015 15:54Updated: 01/07/2022 09:07
Changes: 03/24/2015 15:54 (65), 05/19/2017 10:53 (5), 01/07/2022 09:02 (6), 01/07/2022 09:07 (2)
Complete: 🔍
No comments yet. Languages: en.
Please log in to comment.