#VU9128 Deserialization of untrusted data in Red Hat Virtualization


| Updated: 2020-11-30

Vulnerability identifier: #VU9128

Vulnerability risk: High

CVSSv3.1: 9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2017-7525

CWE-ID: CWE-502

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
Red Hat Virtualization
Server applications / Virtualization software

Vendor: Red Hat Inc.

Description
The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The weakness exists due to a deserialization flaw in the jackson-databind component. A remote attacker can send a specially crafted input to the readValue method of the ObjectMapper and execute arbitrary code with privileges of the target service.

Successful exploitation of the vulnerability may result in system compromise.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Red Hat Virtualization: 4

External links
http://access.redhat.com/errata/RHSA-2017:3141

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.


Latest bulletins with this vulnerability


IBM watsonx.data update for FasterXML jackson-databind
Multiple vulnerabilities in IBM watsonx.data
Multiple vulnerabilities in IBM Application Performance Management products
Multiple vulnerabilities in IBM QRadar User Behavior Analytics
Multiple vulnerabilities in z/Transaction Processing Facility
Multiple vulnerabilities in IBM Cognos Command Center
Multiple vulnerabilities in Dell Support Assist Enterprise
Ubuntu update for libjackson-json-java
Multiple vulnerabilities in Red Hat Fuse
Red Hat update for OpenShift Container Platform logging-elasticsearch5-container