Vulnerability Name:

CVE-2018-1313 (CCN-142898)

Assigned:2017-12-07
Published:2018-05-05
Updated:2022-04-18
Summary:In Apache Derby 10.3.1.4 to 10.14.1.0, a specially-crafted network packet can be used to request the Derby Network Server to boot a database whose location and contents are under the user's control. If the Derby Network Server is not running with a Java Security Manager policy file, the attack is successful. If the server is using a policy file, the policy file must permit the database location to be read for the attack to work. The default Derby Network Server policy file distributed with the affected releases includes a permissive policy as the default Network Server policy, which allows the attack to work.
CVSS v3 Severity:5.3 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N)
4.6 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): High
Availibility (A): None
7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): High
Availibility (A): None
CVSS v2 Severity:3.5 Low (CVSS v2 Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:C/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Complete
Availibility (A): None
Vulnerability Type:CWE-noinfo
Vulnerability Consequences:Bypass Security
References:Source: MITRE
Type: CNA
CVE-2018-1313

Source: CCN
Type: oss-sec Mailing List, Sat, 5 May 2018 07:52:08 -0700
[ANNOUNCE] CVE-2018-1313: Apache Derby externally-controlled input vulnerability

Source: BID
Type: Broken Link
104140

Source: CCN
Type: BID-104140
Apache Derby CVE-2018-1313 Security Bypass Vulnerability

Source: CCN
Type: Apache Web site
Apache Derby

Source: XF
Type: UNKNOWN
apache-cve20181313-sec-bypass(142898)

Source: MLIST
Type: Mailing List, Vendor Advisory
[drill-dev] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities

Source: MLIST
Type: Mailing List, Vendor Advisory
[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities

Source: MLIST
Type: Mailing List, Vendor Advisory
[drill-issues] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities

Source: MLIST
Type: Mailing List, Vendor Advisory
[hive-issues] 20211007 [jira] [Assigned] (HIVE-25597) Bump Apache Derby 10.14.1.0 to 10.14.2.0 CVE-2018-1313

Source: MLIST
Type: Mailing List, Vendor Advisory
[hive-issues] 20211007 [jira] [Commented] (HIVE-25597) Bump Apache Derby 10.14.1.0 to 10.14.2.0 CVE-2018-1313

Source: MLIST
Type: Mailing List, Vendor Advisory
[hive-dev] 20211007 [jira] [Created] (HIVE-25597) Bump Apache Derby 10.14.1.0 to 10.14.2.0 CVE-2018-1313

Source: MLIST
Type: Mitigation, Third Party Advisory
[derby-user] 20180505 [ANNOUNCE] CVE-2018-1313: Apache Derby externally-controlled input vulnerability

Source: CCN
Type: IBM Security Bulletin 0719835 (Monitoring)
A vulnerability in Apache Derby could affect IBM Performance Management products (CVE-2018-1313)

Source: CCN
Type: IBM Security Bulletin 733539 (Tivoli Netcool/Impact)
IBM Tivoli Netcool Impact is affected by an Apache Derby vulnerability (CVE-2018-1313)

Source: CCN
Type: IBM Security Bulletin 6347642 (QRadar SIEM)
Apache Derby as used by IBM QRadar SIEM is vulnerable to Improper Input Validation (CVE-2018-1313)

Source: CCN
Type: IBM Security Bulletin 6417585 (Rational Team Concert)
Multiple vulnerabilites affect IBM Engineering products.

Source: CCN
Type: IBM Security Bulletin 6456763 (WebSphere eXtreme Scale)
Multiple vulnerabilities in IBM WebSphere eXtreme Scale Liberty Deployment.

Source: CCN
Type: IBM Security Bulletin 6606841 (System Dashboard for Enterprise Content Management)
Apache Derby security vulnerabilities in IBM System Dashboard for Enterprise Content Manager (affected, not vulnerable)

Source: CCN
Type: IBM Security Bulletin 6834008 (Log Analysis)
Vulnerability in Apache Derby affect IBM Operations Analytics - Log Analysis (CVE-2018-1313)

Source: CCN
Type: IBM Security Bulletin 6967183 (Cloud Pak System Software Suite)
Multiple vulnerabilities in Open Source software used by Cloud Pak System

Source: CONFIRM
Type: Patch, Third Party Advisory
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

Vulnerable Configuration:Configuration 1:
  • cpe:/a:apache:derby:*:*:*:*:*:*:*:* (Version >= 10.3.1.4 and <= 10.14.1.0)

  • Configuration 2:
  • cpe:/a:oracle:weblogic_server:12.2.1.3:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:apache:derby:10.3.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:apache:derby:10.14.1.0:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:tivoli_netcool/impact:6.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_netcool/impact:7.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_team_concert:6.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:monitoring:8.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_extreme_scale:8.6.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:monitoring:8.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_netcool/impact:6.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_netcool/impact:7.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_team_concert:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.3:p4:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.0:-:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.1:-:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_extreme_scale:8.6.1.4:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:com.ubuntu.xenial:def:201813130000000
    V
    CVE-2018-1313 on Ubuntu 16.04 LTS (xenial) - untriaged.
    2018-05-07
    oval:com.ubuntu.artful:def:20181313000
    V
    CVE-2018-1313 on Ubuntu 17.10 (artful) - untriaged.
    2018-05-07
    oval:com.ubuntu.xenial:def:20181313000
    V
    CVE-2018-1313 on Ubuntu 16.04 LTS (xenial) - untriaged.
    2018-05-07
    oval:com.ubuntu.disco:def:201813130000000
    V
    CVE-2018-1313 on Ubuntu 19.04 (disco) - untriaged.
    2018-05-07
    oval:com.ubuntu.bionic:def:20181313000
    V
    CVE-2018-1313 on Ubuntu 18.04 LTS (bionic) - untriaged.
    2018-05-07
    oval:com.ubuntu.cosmic:def:201813130000000
    V
    CVE-2018-1313 on Ubuntu 18.10 (cosmic) - untriaged.
    2018-05-07
    oval:com.ubuntu.cosmic:def:20181313000
    V
    CVE-2018-1313 on Ubuntu 18.10 (cosmic) - untriaged.
    2018-05-07
    oval:com.ubuntu.bionic:def:201813130000000
    V
    CVE-2018-1313 on Ubuntu 18.04 LTS (bionic) - untriaged.
    2018-05-07
    oval:com.ubuntu.trusty:def:20181313000
    V
    CVE-2018-1313 on Ubuntu 14.04 LTS (trusty) - untriaged.
    2018-05-07
    BACK
    apache derby *
    oracle weblogic server 12.2.1.3
    apache derby 10.3.1.4
    apache derby 10.14.1.0
    ibm tivoli netcool/impact 6.1.1
    ibm tivoli netcool/impact 7.1.0
    ibm rational team concert 6.0.2
    ibm monitoring 8.1.3
    ibm websphere extreme scale 8.6.1.0
    ibm monitoring 8.1.4
    ibm tivoli netcool/impact 6.1.1
    ibm tivoli netcool/impact 7.1.0
    ibm qradar security information and event manager 7.3.0
    ibm rational team concert 7.0
    ibm qradar security information and event manager 7.3.3 p4
    ibm qradar security information and event manager 7.4.0
    ibm qradar security information and event manager 7.4.1 -
    ibm websphere extreme scale 8.6.1.4