CVE-2017-17837 - OpenCVE

The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters (by default), so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Apache	Deltaspike

Configuration 1 [-]

cpe:2.3:a:apache:deltaspike:1.8.0:*:*:*:*:*:*:*

References

Link	Resource
https://git-wip-us.apache.org/repos/asf?p=deltaspike.git%3Bh=4e25023
https://issues.apache.org/jira/browse/DELTASPIKE-1307	Exploit Issue Tracking Patch Vendor Advisory
https://lists.apache.org/thread.html/r17b326c0eb35d8c71c84c171eda83e3e1f011dc757781e34f2846018%40%3Cdev.deltaspike.apache.org%3E
https://lists.apache.org/thread.html/r78565f0f4ecb4ad32a6c405b45b9ee568dfc4729ba63e7d7cb6adf88%40%3Cdev.deltaspike.apache.org%3E

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: apache

Published: 2018-01-04T00:00:00

Updated: 2021-08-18T16:06:12

Reserved: 2017-12-22T00:00:00

Link: CVE-2017-17837

JSON object: View

NVD Information

Status : Modified

Published: 2018-01-04T15:29:00.240

Modified: 2023-11-07T02:41:46.833

Link: CVE-2017-17837

JSON object: View

Redhat Information

No data.

CWE

CWE-79

{"containers": {"cna": {"affected": [{"product": "Apache DeltaSpike", "vendor": "Apache Software Foundation", "versions": [{"status": "affected", "version": "1.8.0"}]}], "datePublic": "2018-01-04T00:00:00", "descriptions": [{"lang": "en", "value": "The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters (by default), so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1."}], "problemTypes": [{"descriptions": [{"description": "Information Disclosure", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-08-18T16:06:12", "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://issues.apache.org/jira/browse/DELTASPIKE-1307"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://git-wip-us.apache.org/repos/asf?p=deltaspike.git%3Bh=4e25023"}, {"name": "[deltaspike-dev] 20210816 Another XSS vulnerability of the same type as CVE-2017-17837", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/r78565f0f4ecb4ad32a6c405b45b9ee568dfc4729ba63e7d7cb6adf88%40%3Cdev.deltaspike.apache.org%3E"}, {"name": "[deltaspike-dev] 20210818 Re: Another XSS vulnerability of the same type as CVE-2017-17837", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/r17b326c0eb35d8c71c84c171eda83e3e1f011dc757781e34f2846018%40%3Cdev.deltaspike.apache.org%3E"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@apache.org", "DATE_PUBLIC": "2018-01-04T00:00:00", "ID": "CVE-2017-17837", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Apache DeltaSpike", "version": {"version_data": [{"version_value": "1.8.0"}]}}]}, "vendor_name": "Apache Software Foundation"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters (by default), so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Information Disclosure"}]}]}, "references": {"reference_data": [{"name": "https://issues.apache.org/jira/browse/DELTASPIKE-1307", "refsource": "CONFIRM", "url": "https://issues.apache.org/jira/browse/DELTASPIKE-1307"}, {"name": "https://git-wip-us.apache.org/repos/asf?p=deltaspike.git;h=4e25023", "refsource": "CONFIRM", "url": "https://git-wip-us.apache.org/repos/asf?p=deltaspike.git;h=4e25023"}, {"name": "[deltaspike-dev] 20210816 Another XSS vulnerability of the same type as CVE-2017-17837", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r78565f0f4ecb4ad32a6c405b45b9ee568dfc4729ba63e7d7cb6adf88@%3Cdev.deltaspike.apache.org%3E"}, {"name": "[deltaspike-dev] 20210818 Re: Another XSS vulnerability of the same type as CVE-2017-17837", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/r17b326c0eb35d8c71c84c171eda83e3e1f011dc757781e34f2846018@%3Cdev.deltaspike.apache.org%3E"}]}}}}, "cveMetadata": {"assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "assignerShortName": "apache", "cveId": "CVE-2017-17837", "datePublished": "2018-01-04T00:00:00", "dateReserved": "2017-12-22T00:00:00", "dateUpdated": "2021-08-18T16:06:12", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:deltaspike:1.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "0B5D5806-DB78-4A90-8D29-24C53C54E704", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Apache DeltaSpike-JSF 1.8.0 module has a XSS injection leak in the windowId handling. The default size of the windowId get's cut off after 10 characters (by default), so the impact might be limited. A fix got applied and released in Apache deltaspike-1.8.1."}, {"lang": "es", "value": "El m\u00f3dulo Apache DeltaSpike-JSF 1.8.0 tiene un fuga de inyecci\u00f3n Cross-Site Scripting (XSS) a la hora de manipular windowId. El tama\u00f1o por defecto del windowId se limita tras 10 caracteres (por defecto), por lo que el impacto puede ser limitado. La soluci\u00f3n se aplic\u00f3 y public\u00f3 en Apache deltaspike-1-8.1."}], "id": "CVE-2017-17837", "lastModified": "2023-11-07T02:41:46.833", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-01-04T15:29:00.240", "references": [{"source": "security@apache.org", "url": "https://git-wip-us.apache.org/repos/asf?p=deltaspike.git%3Bh=4e25023"}, {"source": "security@apache.org", "tags": ["Exploit", "Issue Tracking", "Patch", "Vendor Advisory"], "url": "https://issues.apache.org/jira/browse/DELTASPIKE-1307"}, {"source": "security@apache.org", "url": "https://lists.apache.org/thread.html/r17b326c0eb35d8c71c84c171eda83e3e1f011dc757781e34f2846018%40%3Cdev.deltaspike.apache.org%3E"}, {"source": "security@apache.org", "url": "https://lists.apache.org/thread.html/r78565f0f4ecb4ad32a6c405b45b9ee568dfc4729ba63e7d7cb6adf88%40%3Cdev.deltaspike.apache.org%3E"}], "sourceIdentifier": "security@apache.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}