| Vulnerability Name: | CVE-2018-1313 (CCN-142898) | ||||||||||||||||||||||||||||||||||||||||
| Assigned: | 2017-12-07 | ||||||||||||||||||||||||||||||||||||||||
| Published: | 2018-05-05 | ||||||||||||||||||||||||||||||||||||||||
| Updated: | 2022-04-18 | ||||||||||||||||||||||||||||||||||||||||
| Summary: | In Apache Derby 10.3.1.4 to 10.14.1.0, a specially-crafted network packet can be used to request the Derby Network Server to boot a database whose location and contents are under the user's control. If the Derby Network Server is not running with a Java Security Manager policy file, the attack is successful. If the server is using a policy file, the policy file must permit the database location to be read for the attack to work. The default Derby Network Server policy file distributed with the affected releases includes a permissive policy as the default Network Server policy, which allows the attack to work. | ||||||||||||||||||||||||||||||||||||||||
| CVSS v3 Severity: | 5.3 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N) 4.6 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
| ||||||||||||||||||||||||||||||||||||||||
| CVSS v2 Severity: | 3.5 Low (CVSS v2 Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N)
| ||||||||||||||||||||||||||||||||||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||||||||||||||||||||||||||||||||||
| Vulnerability Consequences: | Bypass Security | ||||||||||||||||||||||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2018-1313 Source: CCN Type: oss-sec Mailing List, Sat, 5 May 2018 07:52:08 -0700 [ANNOUNCE] CVE-2018-1313: Apache Derby externally-controlled input vulnerability Source: BID Type: Broken Link 104140 Source: CCN Type: BID-104140 Apache Derby CVE-2018-1313 Security Bypass Vulnerability Source: CCN Type: Apache Web site Apache Derby Source: XF Type: UNKNOWN apache-cve20181313-sec-bypass(142898) Source: MLIST Type: Mailing List, Vendor Advisory [drill-dev] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities Source: MLIST Type: Mailing List, Vendor Advisory [drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities Source: MLIST Type: Mailing List, Vendor Advisory [drill-issues] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities Source: MLIST Type: Mailing List, Vendor Advisory [hive-issues] 20211007 [jira] [Assigned] (HIVE-25597) Bump Apache Derby 10.14.1.0 to 10.14.2.0 CVE-2018-1313 Source: MLIST Type: Mailing List, Vendor Advisory [hive-issues] 20211007 [jira] [Commented] (HIVE-25597) Bump Apache Derby 10.14.1.0 to 10.14.2.0 CVE-2018-1313 Source: MLIST Type: Mailing List, Vendor Advisory [hive-dev] 20211007 [jira] [Created] (HIVE-25597) Bump Apache Derby 10.14.1.0 to 10.14.2.0 CVE-2018-1313 Source: MLIST Type: Mitigation, Third Party Advisory [derby-user] 20180505 [ANNOUNCE] CVE-2018-1313: Apache Derby externally-controlled input vulnerability Source: CCN Type: IBM Security Bulletin 0719835 (Monitoring) A vulnerability in Apache Derby could affect IBM Performance Management products (CVE-2018-1313) Source: CCN Type: IBM Security Bulletin 733539 (Tivoli Netcool/Impact) IBM Tivoli Netcool Impact is affected by an Apache Derby vulnerability (CVE-2018-1313) Source: CCN Type: IBM Security Bulletin 6347642 (QRadar SIEM) Apache Derby as used by IBM QRadar SIEM is vulnerable to Improper Input Validation (CVE-2018-1313) Source: CCN Type: IBM Security Bulletin 6417585 (Rational Team Concert) Multiple vulnerabilites affect IBM Engineering products. Source: CCN Type: IBM Security Bulletin 6456763 (WebSphere eXtreme Scale) Multiple vulnerabilities in IBM WebSphere eXtreme Scale Liberty Deployment. Source: CCN Type: IBM Security Bulletin 6606841 (System Dashboard for Enterprise Content Management) Apache Derby security vulnerabilities in IBM System Dashboard for Enterprise Content Manager (affected, not vulnerable) Source: CCN Type: IBM Security Bulletin 6834008 (Log Analysis) Vulnerability in Apache Derby affect IBM Operations Analytics - Log Analysis (CVE-2018-1313) Source: CCN Type: IBM Security Bulletin 6967183 (Cloud Pak System Software Suite) Multiple vulnerabilities in Open Source software used by Cloud Pak System Source: CONFIRM Type: Patch, Third Party Advisory https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html | ||||||||||||||||||||||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||||||||||||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||||||||||||||
| BACK | |||||||||||||||||||||||||||||||||||||||||