漏洞信息(CVE-2017-7525)

一、漏洞 CVE-2017-7525 基础信息

漏洞信息

                                        # N/A

## 概述
在 jackson-databind 中发现了反序列化漏洞，该漏洞可使未经认证的用户通过向 ObjectMapper 的 readValue 方法发送恶意构造的输入来执行代码。

## 影响版本
- 2.6.7.1 之前的所有 2.6.x 版本
- 2.7.9.1 之前的所有 2.7.x 版本
- 2.8.9 之前的所有 2.8.x 版本

## 细节
该漏洞存在于 jackson-databind 库中，在前述受影响版本中，当使用 ObjectMapper 的 readValue 方法处理恶意构造的输入时，会触发反序列化漏洞，导致远程代码执行。

## 影响
未经认证的攻击者可以通过发送特制的输入，利用该漏洞在目标系统上执行任意代码，进而可能导致系统被完全控制。

提示

尽管我们采用了先进的大模型技术，但其输出仍可能包含不准确或过时的信息。
神龙会尽力确保数据准确，但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利！

漏洞标题

N/A

来源：美国国家漏洞数据库 NVD

漏洞描述信息

A deserialization flaw was discovered in the jackson-databind, versions before 2.6.7.1, 2.7.9.1 and 2.8.9, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper.

来源：美国国家漏洞数据库 NVD

CVSS信息

N/A

来源：美国国家漏洞数据库 NVD

漏洞类别

不完整的黑名单

来源：美国国家漏洞数据库 NVD

漏洞标题

FasterXML Jackson 代码问题漏洞

来源：中国国家信息安全漏洞库 CNNVD

漏洞描述信息

FasterXML Jackson是美国FasterXML公司的一款适用于Java的数据处理工具。jackson-databind是其中的一个具有数据绑定功能的组件。 FasterXML jackson-databind 2.6.7.1之前版本、2.7.9.1版本和2.8.9版本中存在代码问题漏洞。该漏洞源于网络系统或产品的代码开发过程中存在设计或实现不当的问题。

来源：中国国家信息安全漏洞库 CNNVD

CVSS信息

N/A

来源：中国国家信息安全漏洞库 CNNVD

漏洞类别

代码问题

来源：中国国家信息安全漏洞库 CNNVD

二、漏洞 CVE-2017-7525 的公开POC

#	POC 描述	源链接	神龙链接
1	Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告	https://github.com/SecureSkyTechnology/study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095	POC详情
2	CVE-2017-7525 S2-055 Exploit	https://github.com/Nazicc/S2-055	POC详情
3	Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.	https://github.com/JavanXD/Demo-Exploit-Jackson-RCE	POC详情
4	Demo for CVE-2017-7525	https://github.com/BassinD/jackson-RCE	POC详情
5	Jackson Deserialization CVE-2017-7525 PoC	https://github.com/Dannners/jackson-deserialization-2017-7525	POC详情
6	Insecure Java Deserialization Lab	https://github.com/Ingenuity-Fainting-Goats/CVE-2017-7525-Jackson-Deserialization-Lab	POC详情
7	None	https://github.com/Threekiii/Awesome-POC/blob/master/%E5%BC%80%E5%8F%91%E6%A1%86%E6%9E%B6%E6%BC%8F%E6%B4%9E/Jackson-databind%20%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96%E6%BC%8F%E6%B4%9E%20CVE-2017-7525%2BCVE-2017-17485.md	POC详情
8		https://github.com/vulhub/vulhub/blob/master/jackson/CVE-2017-7525/README.md	POC详情

三、漏洞 CVE-2017-7525 的情报信息

https://github.com/FasterXML/jackson-databind/issues/1723 x_refsource_CONFIRM
https://cwiki.apache.org/confluence/display/WW/S2-055 x_refsource_CONFIRM
https://security.netapp.com/advisory/ntap-20171214-0002/ x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=1462702 x_refsource_CONFIRM
https://github.com/FasterXML/jackson-databind/issues/1599 x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html x_refsource_CONFIRM
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html x_refsource_CONFIRM
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html x_refsource_MISC
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html x_refsource_MISC
https://www.oracle.com/security-alerts/cpuoct2020.html x_refsource_MISC
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03902en_us x_refsource_CONFIRM
http://www.securityfocus.com/bid/99623 vdb-entry x_refsource_BID
http://www.securitytracker.com/id/1039947 vdb-entry x_refsource_SECTRACK
http://www.securitytracker.com/id/1039744 vdb-entry x_refsource_SECTRACK
http://www.securitytracker.com/id/1040360 vdb-entry x_refsource_SECTRACK
https://www.debian.org/security/2017/dsa-4004 vendor-advisory x_refsource_DEBIAN
https://access.redhat.com/errata/RHSA-2019:3149 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:2858 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2019:0910 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:3141 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2633 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:3454 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1839 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1840 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2547 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1836 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1835 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2018:1449 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2635 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2638 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2018:1450 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:3458 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2018:0294 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1837 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:3455 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2637 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2018:0342 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:3456 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2477 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:1834 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2636 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2546 vendor-advisory x_refsource_REDHAT
https://lists.apache.org/thread.html/5008bcbd45ee65ce39e4220b6ac53d28a24d6bc67d5804e9773a7399%40%3Csolr-user.lucene.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/f095a791bda6c0595f691eddd0febb2d396987eec5cbd29120d8c629%40%3Csolr-user.lucene.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/c9d5ff20929e8a3c8794facf4c4b326a9c10618812eec356caa20b87%40%3Csolr-user.lucene.apache.org%3E mailing-list x_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2020/01/msg00037.html mailing-list x_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2020/08/msg00039.html mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/r68acf97f4526ba59a33cc6e592261ea4f85d890f99e79c82d57dd589%40%3Cissues.spark.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/708d94141126eac03011144a971a6411fcac16d9c248d1d535a39451%40%3Csolr-user.lucene.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe%40%3Ccommits.druid.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/r42ac3e39e6265db12d9fc6ae1cd4b5fea7aed9830dc6f6d58228fed7%40%3Ccommits.cassandra.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/4641ed8616ccc2c1fbddac2c3dc9900c96387bc226eaf0232d61909b%40%3Ccommits.cassandra.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/rf7f87810c38dc9abf9f93989f76008f504cbf7c1a355214640b2d04c%40%3Ccommits.cassandra.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/b1f33fe5ade396bb903fdcabe9f243f7692c7dfce5418d3743c2d346%40%3Cdev.lucene.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/c10a2bf0fdc3d25faf17bd191d6ec46b29a353fa9c97bebd7c4e5913%40%3Cdev.lucene.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/c2ed4c0126b43e324cf740012a0edd371fd36096fd777be7bfe7a2a6%40%3Cdev.lucene.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/3c87dc8bca99a2b3b4743713b33d1de05b1d6b761fdf316224e9c81f%40%3Cdev.lucene.apache.org%3E mailing-list x_refsource_MLIST
https://lists.apache.org/thread.html/f60afd3c7e9ebaaf70fad4a4beb75cf8740ac959017a31e7006c7486%40%3Cdev.lucene.apache.org%3E mailing-list x_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2017-7525

一、 漏洞 CVE-2017-7525 基础信息

漏洞信息

提示

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2017-7525 的公开POC

三、漏洞 CVE-2017-7525 的情报信息

一、漏洞 CVE-2017-7525 基础信息