CVE-2019-20343

The MojoHaus Exec Maven plugin 1.1.1 for Maven allows code execution via a crafted XML document because a configuration element (within a plugin element) can specify an arbitrary program in an executable element (and can also specify arbitrary command-line arguments in an arguments element).

CVSS v3 9.8 CRITICAL
CVSS v2.0 7.5 HIGH

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://drive.google.com/open?id=0B5UvrSwn4wuwTnNqSzZESjIwZHo5ZXhWdHh2T2Z0eWRCT1hF	Third Party Advisory
https://drive.google.com/open?id=1GLs0d9IGArMVrlbEGbxgCjA1MuzIJk-3	Third Party Advisory
https://www.mojohaus.org/exec-maven-plugin/	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:mojohaus:exec_maven:1.1.1:*:*:*:*:maven:*:*

History

No history.

Information

Published : 2020-01-06 14:15

Updated : 2024-02-04 20:39

NVD link : CVE-2019-20343

Mitre link : CVE-2019-20343

CVE.ORG link : CVE-2019-20343

JSON object : View

Products Affected

mojohaus

exec_maven

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

{"id": "CVE-2019-20343", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2020-01-06T14:15:11.490", "references": [{"url": "https://drive.google.com/open?id=0B5UvrSwn4wuwTnNqSzZESjIwZHo5ZXhWdHh2T2Z0eWRCT1hF", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://drive.google.com/open?id=1GLs0d9IGArMVrlbEGbxgCjA1MuzIJk-3", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.mojohaus.org/exec-maven-plugin/", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "The MojoHaus Exec Maven plugin 1.1.1 for Maven allows code execution via a crafted XML document because a configuration element (within a plugin element) can specify an arbitrary program in an executable element (and can also specify arbitrary command-line arguments in an arguments element)."}, {"lang": "es", "value": "El plugin MojoHaus Exec Maven versiones 1.1.1 para Maven, permite una ejecuci\u00f3n de c\u00f3digo por medio de un documento XML especialmente dise\u00f1ado porque un elemento de configuraci\u00f3n (dentro de un elemento plugin) puede especificar un programa arbitrario en un elemento ejecutable (y tambi\u00e9n puede especificar argumentos arbitrarios de l\u00ednea de comando en un elemento de argumentos)."}], "lastModified": "2020-01-15T17:07:09.623", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mojohaus:exec_maven:1.1.1:*:*:*:*:maven:*:*", "vulnerable": true, "matchCriteriaId": "E57EBC7F-8EDB-4D43-9223-B863427273BF"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}