CVE-2018-10862

WildFly Core before version 6.0.0.Alpha3 does not properly validate file paths in .war archives, allowing for the extraction of crafted .war archives to overwrite arbitrary files. This is an instance of the 'Zip Slip' vulnerability.

Published: Jul 27, 2018
Updated: May 9, 2024
CVE: CVE-2018-10862
GHSA: GHSA-w8r2-5j8x-x8j6
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

Severity: Low
Score: 4.9
AV:N/AC:M/Au:S/C:N/I:P/A:P

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
redhat / virtualization	4.0	4.0.x
redhat / jboss_enterprise_application_platform	7.1.0	7.1.0.x
redhat / wildfly_core	6.0.0-alpha1	6.0.0-alpha1.x
redhat / wildfly_core	6.0.0-alpha2	6.0.0-alpha2.x
redhat / wildfly_core	-	5.0.0.x
org.wildfly.core / wildfly-server	-	6.0.0.Alpha3

https://access.redhat.com/errata/RHSA-2018:2276
https://access.redhat.com/errata/RHSA-2018:2277
https://access.redhat.com/errata/RHSA-2018:2279
https://access.redhat.com/errata/RHSA-2018:2423
https://access.redhat.com/errata/RHSA-2018:2424
https://access.redhat.com/errata/RHSA-2018:2425
https://access.redhat.com/errata/RHSA-2018:2428
https://access.redhat.com/errata/RHSA-2018:2643
https://access.redhat.com/errata/RHSA-2019:0877
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10862
https://snyk.io/research/zip-slip-vulnerability

Vulnerability Database

289,599

CVE-2018-10862