CVE-2019-10185

It was found that icedtea-web up to and including 1.7.2 and 1.8.2 was vulnerable to a zip-slip attack during auto-extraction of a JAR file. An attacker could use this flaw to write files to arbitrary locations. This could also be used to replace the main running application and, possibly, break out of the sandbox.

Published: Aug 1, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-10185
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.6
AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

CVSS v2:

Severity: Medium
Score: 6.4
AV:N/AC:L/Au:N/C:N/I:P/A:P

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
icedtea-web_project / icedtea-web	-	1.7.2.x
icedtea-web_project / icedtea-web	1.8.2	1.8.2.x
debian / debian_linux	8.0	8.0.x
opensuse / leap	15.0	15.0.x

http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00045.html
http://packetstormsecurity.com/files/154748/IcedTeaWeb-Validation-Bypass-Directory-Traversal-Code-Execution.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10185
https://github.com/AdoptOpenJDK/IcedTea-Web/issues/327
https://github.com/AdoptOpenJDK/IcedTea-Web/pull/344
https://lists.debian.org/debian-lts-announce/2019/09/msg00008.html
https://seclists.org/bugtraq/2019/Oct/5
https://security.gentoo.org/glsa/202107-51

Vulnerability Database

289,784

CVE-2019-10185