CVE-2020-1757: Input Validation

First published: Wed Dec 19 2018(Updated: )

A flaw was found in all undertow-2.x.x SP1 versions prior to undertow-2.0.30.SP1, all undertow-1.x.x and undertow-2.x.x versions prior to undertow-2.1.0.Final, where the Servlet container causes servletPath to normalize incorrectly by truncating the path after semicolon which may lead to an application mapping resulting in the security bypass.

Credit: secalert@redhat.com

Remedy

The issue can be mitigated by configuring UrlPathHelper to ignore the servletPath via setting "alwaysUseFullPath".

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

collector/redhat-cve
agent/weakness
agent/type
agent/first-publish-date
agent/remedy
agent/severity
agent/author
collector/mitre-cve
source/MITRE
agent/description
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2020-1757
agent/software-canonical-lookup
agent/references
agent/last-modified-date
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
package-manager/redhat
vendor/redhat
canonical/redhat undertow
version/redhat undertow/2.0.0-sp1
version/redhat undertow/2.0.25-sp1
version/redhat undertow/2.0.26-sp3
version/redhat undertow/2.0.28-sp1
version/redhat undertow/2.0.28-sp2
canonical/red hat jboss data grid
version/red hat jboss data grid/7.0.0
canonical/red hat jboss enterprise application platform
version/red hat jboss enterprise application platform/7.0.0
canonical/redhat jboss fuse
version/redhat jboss fuse/6.0.0
version/redhat jboss fuse/7.0.0
canonical/red hat openshift application runtimes
canonical/red hat single sign-on
version/red hat single sign-on/7.0

CVE-2020-1757: Input Validation

Remedy

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Company

Resources

Contact

Affected Software	Affected Version	How to fix
redhat/eap7-activemq-artemis	<0:2.9.0-4.redhat_00010.1.el6ea	0:2.9.0-4.redhat_00010.1.el6ea
redhat/eap7-apache-cxf	<0:3.2.12-1.redhat_00001.1.el6ea	0:3.2.12-1.redhat_00001.1.el6ea
redhat/eap7-bouncycastle	<0:1.60.0-2.redhat_00002.1.el6ea	0:1.60.0-2.redhat_00002.1.el6ea
redhat/eap7-codehaus-jackson	<0:1.9.13-10.redhat_00007.1.el6ea	0:1.9.13-10.redhat_00007.1.el6ea
redhat/eap7-cryptacular	<0:1.2.4-1.redhat_00001.1.el6ea	0:1.2.4-1.redhat_00001.1.el6ea
redhat/eap7-glassfish-el	<0:3.0.1-5.b08_redhat_00004.1.el6ea	0:3.0.1-5.b08_redhat_00004.1.el6ea
redhat/eap7-glassfish-javamail	<0:1.6.2-2.redhat_00001.1.el6ea	0:1.6.2-2.redhat_00001.1.el6ea
redhat/eap7-glassfish-jsf	<0:2.3.5-10.SP3_redhat_00008.1.el6ea	0:2.3.5-10.SP3_redhat_00008.1.el6ea
redhat/eap7-hal-console	<0:3.0.21-1.Final_redhat_00001.1.el6ea	0:3.0.21-1.Final_redhat_00001.1.el6ea
redhat/eap7-hibernate-commons-annotations	<0:5.0.5-1.Final_redhat_00002.1.el6ea	0:5.0.5-1.Final_redhat_00002.1.el6ea
redhat/eap7-hibernate-search	<0:5.10.7-1.Final_redhat_00001.1.el6ea	0:5.10.7-1.Final_redhat_00001.1.el6ea
redhat/eap7-httpcomponents-client	<0:4.5.4-1.redhat_00001.1.el6ea	0:4.5.4-1.redhat_00001.1.el6ea
redhat/eap7-httpcomponents-core	<0:4.4.5-1.redhat_00001.1.el6ea	0:4.4.5-1.redhat_00001.1.el6ea
redhat/eap7-jackson-databind	<0:2.9.10.2-2.redhat_00002.1.el6ea	0:2.9.10.2-2.redhat_00002.1.el6ea
redhat/eap7-jasypt	<0:1.9.3-1.redhat_00001.1.el6ea	0:1.9.3-1.redhat_00001.1.el6ea
redhat/eap7-javaee-security-soteria	<0:1.0.0-3.redhat_00002.1.el6ea	0:1.0.0-3.redhat_00002.1.el6ea
redhat/eap7-jaxbintros	<0:1.0.3-1.GA_redhat_00001.1.el6ea	0:1.0.3-1.GA_redhat_00001.1.el6ea
redhat/eap7-jboss-classfilewriter	<0:1.2.4-1.Final_redhat_00001.1.el6ea	0:1.2.4-1.Final_redhat_00001.1.el6ea
redhat/eap7-jboss-common-beans	<0:2.0.1-1.Final_redhat_00001.1.el6ea	0:2.0.1-1.Final_redhat_00001.1.el6ea
redhat/eap7-jboss-ejb-client	<0:4.0.31-1.Final_redhat_00001.1.el6ea	0:4.0.31-1.Final_redhat_00001.1.el6ea
redhat/eap7-jboss-invocation	<0:1.5.2-1.Final_redhat_00001.1.el6ea	0:1.5.2-1.Final_redhat_00001.1.el6ea
redhat/eap7-jboss-modules	<0:1.8.9-1.Final_redhat_00001.1.el6ea	0:1.8.9-1.Final_redhat_00001.1.el6ea
redhat/eap7-jboss-openjdk-orb	<0:8.1.4-3.Final_redhat_00002.1.el6ea	0:8.1.4-3.Final_redhat_00002.1.el6ea
redhat/eap7-jboss-remoting	<0:5.0.18-1.Final_redhat_00001.1.el6ea	0:5.0.18-1.Final_redhat_00001.1.el6ea
redhat/eap7-jboss-remoting-jmx	<0:3.0.4-1.Final_redhat_00001.1.el6ea	0:3.0.4-1.Final_redhat_00001.1.el6ea
redhat/eap7-jboss-security-negotiation	<0:3.0.6-1.Final_redhat_00001.1.el6ea	0:3.0.6-1.Final_redhat_00001.1.el6ea
redhat/eap7-jboss-server-migration	<0:1.3.1-10.Final_redhat_00011.1.el6ea	0:1.3.1-10.Final_redhat_00011.1.el6ea
redhat/eap7-jboss-threads	<0:2.3.3-1.Final_redhat_00001.1.el6ea	0:2.3.3-1.Final_redhat_00001.1.el6ea
redhat/eap7-jbossws-common	<0:3.2.3-1.Final_redhat_00001.1.el6ea	0:3.2.3-1.Final_redhat_00001.1.el6ea
redhat/eap7-jgroups	<0:4.0.20-2.Final_redhat_00002.1.el6ea	0:4.0.20-2.Final_redhat_00002.1.el6ea
redhat/eap7-jgroups-azure	<0:1.2.1-1.Final_redhat_00001.1.el6ea	0:1.2.1-1.Final_redhat_00001.1.el6ea
redhat/eap7-jgroups-kubernetes	<0:1.0.13-1.Final_redhat_00001.1.el6ea	0:1.0.13-1.Final_redhat_00001.1.el6ea
redhat/eap7-narayana	<0:5.9.8-1.Final_redhat_00002.1.el6ea	0:5.9.8-1.Final_redhat_00002.1.el6ea
redhat/eap7-opensaml	<0:3.3.1-1.redhat_00002.1.el6ea	0:3.3.1-1.redhat_00002.1.el6ea
redhat/eap7-picketbox	<0:5.0.3-7.Final_redhat_00006.1.el6ea	0:5.0.3-7.Final_redhat_00006.1.el6ea
redhat/eap7-resteasy	<0:3.6.1-9.SP8_redhat_00001.1.el6ea	0:3.6.1-9.SP8_redhat_00001.1.el6ea
redhat/eap7-slf4j-jboss-logmanager	<0:1.0.4-1.GA_redhat_00001.1.el6ea	0:1.0.4-1.GA_redhat_00001.1.el6ea
redhat/eap7-smallrye-config	<0:1.3.6-1.SP01_redhat_00001.1.el6ea	0:1.3.6-1.SP01_redhat_00001.1.el6ea
redhat/eap7-smallrye-health	<0:1.0.2-2.redhat_00002.1.el6ea	0:1.0.2-2.redhat_00002.1.el6ea
redhat/eap7-undertow	<0:2.0.30-2.SP2_redhat_00001.1.el6ea	0:2.0.30-2.SP2_redhat_00001.1.el6ea