| { |
| "containers": { |
| "cna": { |
| "affected": [ |
| { |
| "product": "Apache Dubbo", |
| "vendor": "Apache Software Foundation", |
| "versions": [ |
| { |
| "lessThanOrEqual": "2.7.12", |
| "status": "affected", |
| "version": "Apache Dubbo 2.7.x", |
| "versionType": "custom" |
| } |
| ] |
| } |
| ], |
| "descriptions": [ |
| { |
| "lang": "en", |
| "value": "Some component in Dubbo will try to print the formated string of the input arguments, which will possibly cause RCE for a maliciously customized bean with special toString method. In the latest version, we fix the toString call in timeout, cache and some other places. Fixed in Apache Dubbo 2.7.13" |
| } |
| ], |
| "problemTypes": [ |
| { |
| "descriptions": [ |
| { |
| "description": "Remote Code Execution", |
| "lang": "en", |
| "type": "text" |
| } |
| ] |
| } |
| ], |
| "providerMetadata": { |
| "orgId": "Not found", |
| "shortName": "Not found" |
| }, |
| "references": [ |
| { |
| "tags": [ |
| "x_refsource_CONFIRM" |
| ], |
| "url": "https://lists.apache.org/thread.html/r40212261fd5d638074b65f22ac73eebe93ace310c79d4cfcca4863da%40%3Cdev.dubbo.apache.org%3E" |
| } |
| ], |
| "source": { |
| "discovery": "UNKNOWN" |
| }, |
| "title": "Unprotected input value toString cause RCE", |
| "x_ValidationErrors": [ |
| "$.cveMetadata.assignerOrgId -- validator = pattern", |
| "$.containers.cna.providerMetadata.orgId -- validator = pattern" |
| ], |
| "x_generator": { |
| "engine": "Vulnogram 0.0.9" |
| }, |
| "x_legacyV4Record": { |
| "CNA_private": { |
| "CVE_list": [], |
| "CVE_table_description": [], |
| "email": "liujun@apache.org", |
| "emailed": "", |
| "internal_comments": "", |
| "owner": "dubbo", |
| "publish": { |
| "month": "", |
| "year": "", |
| "ym": "" |
| }, |
| "share_with_CVE": true, |
| "todo": [], |
| "userslist": "" |
| }, |
| "CVE_data_meta": { |
| "AKA": "", |
| "ASSIGNER": "security@apache.org", |
| "DATE_PUBLIC": "", |
| "ID": "CVE-2021-36161", |
| "STATE": "PUBLIC", |
| "TITLE": "Unprotected input value toString cause RCE" |
| }, |
| "affects": { |
| "vendor": { |
| "vendor_data": [ |
| { |
| "product": { |
| "product_data": [ |
| { |
| "product_name": "Apache Dubbo", |
| "version": { |
| "version_data": [ |
| { |
| "platform": "", |
| "version_affected": "<=", |
| "version_name": "Apache Dubbo 2.7.x", |
| "version_value": "2.7.12" |
| } |
| ] |
| } |
| } |
| ] |
| }, |
| "vendor_name": "Apache Software Foundation" |
| } |
| ] |
| } |
| }, |
| "configuration": [], |
| "credit": [], |
| "data_format": "MITRE", |
| "data_type": "CVE", |
| "data_version": "4.0", |
| "description": { |
| "description_data": [ |
| { |
| "lang": "eng", |
| "value": "Some component in Dubbo will try to print the formated string of the input arguments, which will possibly cause RCE for a maliciously customized bean with special toString method. In the latest version, we fix the toString call in timeout, cache and some other places. Fixed in Apache Dubbo 2.7.13" |
| } |
| ] |
| }, |
| "exploit": [], |
| "generator": { |
| "engine": "Vulnogram 0.0.9" |
| }, |
| "impact": [ |
| { |
| "other": "" |
| } |
| ], |
| "problemtype": { |
| "problemtype_data": [ |
| { |
| "description": [ |
| { |
| "lang": "eng", |
| "value": "Remote Code Execution" |
| } |
| ] |
| } |
| ] |
| }, |
| "references": { |
| "reference_data": [ |
| { |
| "name": "", |
| "refsource": "CONFIRM", |
| "url": "https://lists.apache.org/thread.html/r40212261fd5d638074b65f22ac73eebe93ace310c79d4cfcca4863da%40%3Cdev.dubbo.apache.org%3E" |
| } |
| ] |
| }, |
| "solution": [], |
| "source": { |
| "advisory": "", |
| "defect": [], |
| "discovery": "UNKNOWN" |
| }, |
| "timeline": [], |
| "work_around": [] |
| } |
| } |
| }, |
| "cveMetadata": { |
| "assignerOrgId": "Not found", |
| "assignerShortName": "Not found", |
| "cveId": "CVE-2021-36161", |
| "state": "PUBLISHED" |
| }, |
| "dataType": "CVE_RECORD", |
| "dataVersion": "5.0" |
| } |
