Vulnerabilites related to lightbend - play_framework
CVE-2020-26882 (GCVE-0-2020-26882)
Vulnerability from cvelistv5
Published
2020-11-06 13:26
Modified
2024-08-04 16:03
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
In Play Framework 2.6.0 through 2.8.2, data amplification can occur when an application accepts multipart/form-data JSON input.
References
| ► | URL | Tags |
|---|---|---|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T16:03:22.756Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26882-JsonParseDataAmplification"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In Play Framework 2.6.0 through 2.8.2, data amplification can occur when an application accepts multipart/form-data JSON input."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-11-06T13:26:14",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26882-JsonParseDataAmplification"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2020-26882",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Play Framework 2.6.0 through 2.8.2, data amplification can occur when an application accepts multipart/form-data JSON input."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.playframework.com/security/vulnerability",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability"
},
{
"name": "https://www.playframework.com/security/vulnerability/CVE-2020-26882-JsonParseDataAmplification",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26882-JsonParseDataAmplification"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2020-26882",
"datePublished": "2020-11-06T13:26:14",
"dateReserved": "2020-10-07T00:00:00",
"dateUpdated": "2024-08-04T16:03:22.756Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2014-3630 (GCVE-0-2014-3630)
Vulnerability from cvelistv5
Published
2017-12-29 22:00
Modified
2024-08-06 10:50
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
XML external entity (XXE) vulnerability in the Java XML processing functionality in Play before 2.2.6 and 2.3.x before 2.3.5 might allow remote attackers to read arbitrary files, cause a denial of service, or have unspecified other impact via crafted XML data.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T10:50:17.931Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://infocon.org/cons/SyScan/SyScan%202015%20Singapore/SyScan%202015%20Singapore%20presentations/SyScan15%20David%20Jorm%20-%20Finding%20and%20exploiting%20novel%20flaws%20in%20Java%20software.pdf"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://groups.google.com/forum/#%21msg/play-framework/7uNX_ImTW08/AogWSjsTAyQJ"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://groups.google.com/forum/#%21topic/play-framework/WdbFvemsFDQ"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://playframework.com/security/vulnerability/CVE-2014-3630-XmlExternalEntity"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-10-07T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "XML external entity (XXE) vulnerability in the Java XML processing functionality in Play before 2.2.6 and 2.3.x before 2.3.5 might allow remote attackers to read arbitrary files, cause a denial of service, or have unspecified other impact via crafted XML data."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-29T21:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://infocon.org/cons/SyScan/SyScan%202015%20Singapore/SyScan%202015%20Singapore%20presentations/SyScan15%20David%20Jorm%20-%20Finding%20and%20exploiting%20novel%20flaws%20in%20Java%20software.pdf"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://groups.google.com/forum/#%21msg/play-framework/7uNX_ImTW08/AogWSjsTAyQJ"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://groups.google.com/forum/#%21topic/play-framework/WdbFvemsFDQ"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://playframework.com/security/vulnerability/CVE-2014-3630-XmlExternalEntity"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2014-3630",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "XML external entity (XXE) vulnerability in the Java XML processing functionality in Play before 2.2.6 and 2.3.x before 2.3.5 might allow remote attackers to read arbitrary files, cause a denial of service, or have unspecified other impact via crafted XML data."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://infocon.org/cons/SyScan/SyScan%202015%20Singapore/SyScan%202015%20Singapore%20presentations/SyScan15%20David%20Jorm%20-%20Finding%20and%20exploiting%20novel%20flaws%20in%20Java%20software.pdf",
"refsource": "MISC",
"url": "https://infocon.org/cons/SyScan/SyScan%202015%20Singapore/SyScan%202015%20Singapore%20presentations/SyScan15%20David%20Jorm%20-%20Finding%20and%20exploiting%20novel%20flaws%20in%20Java%20software.pdf"
},
{
"name": "https://groups.google.com/forum/#!msg/play-framework/7uNX_ImTW08/AogWSjsTAyQJ",
"refsource": "CONFIRM",
"url": "https://groups.google.com/forum/#!msg/play-framework/7uNX_ImTW08/AogWSjsTAyQJ"
},
{
"name": "https://groups.google.com/forum/#!topic/play-framework/WdbFvemsFDQ",
"refsource": "CONFIRM",
"url": "https://groups.google.com/forum/#!topic/play-framework/WdbFvemsFDQ"
},
{
"name": "https://playframework.com/security/vulnerability/CVE-2014-3630-XmlExternalEntity",
"refsource": "CONFIRM",
"url": "https://playframework.com/security/vulnerability/CVE-2014-3630-XmlExternalEntity"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2014-3630",
"datePublished": "2017-12-29T22:00:00",
"dateReserved": "2014-05-14T00:00:00",
"dateUpdated": "2024-08-06T10:50:17.931Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2018-13864 (GCVE-0-2018-13864)
Vulnerability from cvelistv5
Published
2018-07-17 12:00
Modified
2024-08-05 09:14
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
A directory traversal vulnerability has been found in the Assets controller in Play Framework 2.6.12 through 2.6.15 (fixed in 2.6.16) when running on Windows. It allows a remote attacker to download arbitrary files from the target server via specially crafted HTTP requests.
References
| ► | URL | Tags |
|---|---|---|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T09:14:47.422Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2018-13864-PathTraversal"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2018-07-17T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A directory traversal vulnerability has been found in the Assets controller in Play Framework 2.6.12 through 2.6.15 (fixed in 2.6.16) when running on Windows. It allows a remote attacker to download arbitrary files from the target server via specially crafted HTTP requests."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-07-17T11:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2018-13864-PathTraversal"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-13864",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A directory traversal vulnerability has been found in the Assets controller in Play Framework 2.6.12 through 2.6.15 (fixed in 2.6.16) when running on Windows. It allows a remote attacker to download arbitrary files from the target server via specially crafted HTTP requests."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.playframework.com/security/vulnerability/CVE-2018-13864-PathTraversal",
"refsource": "CONFIRM",
"url": "https://www.playframework.com/security/vulnerability/CVE-2018-13864-PathTraversal"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2018-13864",
"datePublished": "2018-07-17T12:00:00",
"dateReserved": "2018-07-10T00:00:00",
"dateUpdated": "2024-08-05T09:14:47.422Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-31023 (GCVE-0-2022-31023)
Vulnerability from cvelistv5
Published
2022-06-02 18:05
Modified
2025-04-23 18:19
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-209 - Generation of Error Message Containing Sensitive Information
Summary
Play Framework is a web framework for Java and Scala. Verions prior to 2.8.16 are vulnerable to generation of error messages containing sensitive information. Play Framework, when run in dev mode, shows verbose errors for easy debugging, including an exception stack trace. Play does this by configuring its `DefaultHttpErrorHandler` to do so based on the application mode. In its Scala API Play also provides a static object `DefaultHttpErrorHandler` that is configured to always show verbose errors. This is used as a default value in some Play APIs, so it is possible to inadvertently use this version in production. It is also possible to improperly configure the `DefaultHttpErrorHandler` object instance as the injected error handler. Both of these situations could result in verbose errors displaying to users in a production application, which could expose sensitive information from the application. In particular, the constructor for `CORSFilter` and `apply` method for `CORSActionBuilder` use the static object `DefaultHttpErrorHandler` as a default value. This is patched in Play Framework 2.8.16. The `DefaultHttpErrorHandler` object has been changed to use the prod-mode behavior, and `DevHttpErrorHandler` has been introduced for the dev-mode behavior. A workaround is available. When constructing a `CORSFilter` or `CORSActionBuilder`, ensure that a properly-configured error handler is passed. Generally this should be done by using the `HttpErrorHandler` instance provided through dependency injection or through Play's `BuiltInComponents`. Ensure that the application is not using the `DefaultHttpErrorHandler` static object in any code that may be run in production.
References
| ► | URL | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| playframework | playframework |
Version: < 2.8.16 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T07:03:40.340Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-p9p4-97g9-wcrh"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/playframework/playframework/pull/11305"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-31023",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-23T14:06:14.948174Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-04-23T18:19:50.789Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "playframework",
"vendor": "playframework",
"versions": [
{
"status": "affected",
"version": "\u003c 2.8.16"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Play Framework is a web framework for Java and Scala. Verions prior to 2.8.16 are vulnerable to generation of error messages containing sensitive information. Play Framework, when run in dev mode, shows verbose errors for easy debugging, including an exception stack trace. Play does this by configuring its `DefaultHttpErrorHandler` to do so based on the application mode. In its Scala API Play also provides a static object `DefaultHttpErrorHandler` that is configured to always show verbose errors. This is used as a default value in some Play APIs, so it is possible to inadvertently use this version in production. It is also possible to improperly configure the `DefaultHttpErrorHandler` object instance as the injected error handler. Both of these situations could result in verbose errors displaying to users in a production application, which could expose sensitive information from the application. In particular, the constructor for `CORSFilter` and `apply` method for `CORSActionBuilder` use the static object `DefaultHttpErrorHandler` as a default value. This is patched in Play Framework 2.8.16. The `DefaultHttpErrorHandler` object has been changed to use the prod-mode behavior, and `DevHttpErrorHandler` has been introduced for the dev-mode behavior. A workaround is available. When constructing a `CORSFilter` or `CORSActionBuilder`, ensure that a properly-configured error handler is passed. Generally this should be done by using the `HttpErrorHandler` instance provided through dependency injection or through Play\u0027s `BuiltInComponents`. Ensure that the application is not using the `DefaultHttpErrorHandler` static object in any code that may be run in production."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-209",
"description": "CWE-209: Generation of Error Message Containing Sensitive Information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-06-02T18:05:11.000Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-p9p4-97g9-wcrh"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/playframework/playframework/pull/11305"
}
],
"source": {
"advisory": "GHSA-p9p4-97g9-wcrh",
"discovery": "UNKNOWN"
},
"title": "Dev error stack trace leaking into prod in Play Framework",
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2022-31023",
"STATE": "PUBLIC",
"TITLE": "Dev error stack trace leaking into prod in Play Framework"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "playframework",
"version": {
"version_data": [
{
"version_value": "\u003c 2.8.16"
}
]
}
}
]
},
"vendor_name": "playframework"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Play Framework is a web framework for Java and Scala. Verions prior to 2.8.16 are vulnerable to generation of error messages containing sensitive information. Play Framework, when run in dev mode, shows verbose errors for easy debugging, including an exception stack trace. Play does this by configuring its `DefaultHttpErrorHandler` to do so based on the application mode. In its Scala API Play also provides a static object `DefaultHttpErrorHandler` that is configured to always show verbose errors. This is used as a default value in some Play APIs, so it is possible to inadvertently use this version in production. It is also possible to improperly configure the `DefaultHttpErrorHandler` object instance as the injected error handler. Both of these situations could result in verbose errors displaying to users in a production application, which could expose sensitive information from the application. In particular, the constructor for `CORSFilter` and `apply` method for `CORSActionBuilder` use the static object `DefaultHttpErrorHandler` as a default value. This is patched in Play Framework 2.8.16. The `DefaultHttpErrorHandler` object has been changed to use the prod-mode behavior, and `DevHttpErrorHandler` has been introduced for the dev-mode behavior. A workaround is available. When constructing a `CORSFilter` or `CORSActionBuilder`, ensure that a properly-configured error handler is passed. Generally this should be done by using the `HttpErrorHandler` instance provided through dependency injection or through Play\u0027s `BuiltInComponents`. Ensure that the application is not using the `DefaultHttpErrorHandler` static object in any code that may be run in production."
}
]
},
"impact": {
"cvss": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-209: Generation of Error Message Containing Sensitive Information"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/playframework/playframework/releases/tag/2.8.16",
"refsource": "MISC",
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
},
{
"name": "https://github.com/playframework/playframework/security/advisories/GHSA-p9p4-97g9-wcrh",
"refsource": "CONFIRM",
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-p9p4-97g9-wcrh"
},
{
"name": "https://github.com/playframework/playframework/pull/11305",
"refsource": "MISC",
"url": "https://github.com/playframework/playframework/pull/11305"
}
]
},
"source": {
"advisory": "GHSA-p9p4-97g9-wcrh",
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2022-31023",
"datePublished": "2022-06-02T18:05:11.000Z",
"dateReserved": "2022-05-18T00:00:00.000Z",
"dateUpdated": "2025-04-23T18:19:50.789Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-27196 (GCVE-0-2020-27196)
Vulnerability from cvelistv5
Published
2020-11-06 13:24
Modified
2024-08-04 16:11
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
An issue was discovered in PlayJava in Play Framework 2.6.0 through 2.8.2. The body parsing of HTTP requests eagerly parses a payload given a Content-Type header. A deep JSON structure sent to a valid POST endpoint (that may or may not expect JSON payloads) causes a StackOverflowError and Denial of Service.
References
| ► | URL | Tags |
|---|---|---|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T16:11:35.939Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-27196-DosViaJsonStackOverflow"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in PlayJava in Play Framework 2.6.0 through 2.8.2. The body parsing of HTTP requests eagerly parses a payload given a Content-Type header. A deep JSON structure sent to a valid POST endpoint (that may or may not expect JSON payloads) causes a StackOverflowError and Denial of Service."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-11-06T13:24:18",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-27196-DosViaJsonStackOverflow"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2020-27196",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PlayJava in Play Framework 2.6.0 through 2.8.2. The body parsing of HTTP requests eagerly parses a payload given a Content-Type header. A deep JSON structure sent to a valid POST endpoint (that may or may not expect JSON payloads) causes a StackOverflowError and Denial of Service."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.playframework.com/security/vulnerability",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability"
},
{
"name": "https://www.playframework.com/security/vulnerability/CVE-2020-27196-DosViaJsonStackOverflow",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-27196-DosViaJsonStackOverflow"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2020-27196",
"datePublished": "2020-11-06T13:24:18",
"dateReserved": "2020-10-17T00:00:00",
"dateUpdated": "2024-08-04T16:11:35.939Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-17598 (GCVE-0-2019-17598)
Vulnerability from cvelistv5
Published
2019-11-05 14:53
Modified
2024-08-05 01:47
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
An issue was discovered in Lightbend Play Framework 2.5.x through 2.6.23. When configured to make requests using an authenticated HTTP proxy, play-ws may sometimes, typically under high load, when connecting to a target host using https, expose the proxy credentials to the target host.
References
| ► | URL | Tags |
|---|---|---|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T01:47:13.130Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2019-17598-PlayWSHttpConnectAuthorizationHeaders"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in Lightbend Play Framework 2.5.x through 2.6.23. When configured to make requests using an authenticated HTTP proxy, play-ws may sometimes, typically under high load, when connecting to a target host using https, expose the proxy credentials to the target host."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-05T14:53:33",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2019-17598-PlayWSHttpConnectAuthorizationHeaders"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-17598",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in Lightbend Play Framework 2.5.x through 2.6.23. When configured to make requests using an authenticated HTTP proxy, play-ws may sometimes, typically under high load, when connecting to a target host using https, expose the proxy credentials to the target host."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.playframework.com/security/vulnerability",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability"
},
{
"name": "https://www.playframework.com/security/vulnerability/CVE-2019-17598-PlayWSHttpConnectAuthorizationHeaders",
"refsource": "CONFIRM",
"url": "https://www.playframework.com/security/vulnerability/CVE-2019-17598-PlayWSHttpConnectAuthorizationHeaders"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-17598",
"datePublished": "2019-11-05T14:53:19",
"dateReserved": "2019-10-15T00:00:00",
"dateUpdated": "2024-08-05T01:47:13.130Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-26883 (GCVE-0-2020-26883)
Vulnerability from cvelistv5
Published
2020-11-06 13:21
Modified
2024-08-04 16:03
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
In Play Framework 2.6.0 through 2.8.2, stack consumption can occur because of unbounded recursion during parsing of crafted JSON documents.
References
| ► | URL | Tags |
|---|---|---|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T16:03:22.569Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26883-JsonParseUncontrolledRecursion"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In Play Framework 2.6.0 through 2.8.2, stack consumption can occur because of unbounded recursion during parsing of crafted JSON documents."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-11-06T13:21:29",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26883-JsonParseUncontrolledRecursion"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2020-26883",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Play Framework 2.6.0 through 2.8.2, stack consumption can occur because of unbounded recursion during parsing of crafted JSON documents."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.playframework.com/security/vulnerability",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability"
},
{
"name": "https://www.playframework.com/security/vulnerability/CVE-2020-26883-JsonParseUncontrolledRecursion",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26883-JsonParseUncontrolledRecursion"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2020-26883",
"datePublished": "2020-11-06T13:21:29",
"dateReserved": "2020-10-07T00:00:00",
"dateUpdated": "2024-08-04T16:03:22.569Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-31018 (GCVE-0-2022-31018)
Vulnerability from cvelistv5
Published
2022-06-02 16:45
Modified
2025-04-23 18:20
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-400 - Uncontrolled Resource Consumption
Summary
Play Framework is a web framework for Java and Scala. A denial of service vulnerability has been discovered in verions 2.8.3 through 2.8.15 of Play's forms library, in both the Scala and Java APIs. This can occur when using either the `Form#bindFromRequest` method on a JSON request body or the `Form#bind` method directly on a JSON value. If the JSON data being bound to the form contains a deeply-nested JSON object or array, the form binding implementation may consume all available heap space and cause an `OutOfMemoryError`. If executing on the default dispatcher and `akka.jvm-exit-on-fatal-error` is enabled—as it is by default—then this can crash the application process. `Form.bindFromRequest` is vulnerable when using any body parser that produces a type of `AnyContent` or `JsValue` in Scala, or one that can produce a `JsonNode` in Java. This includes Play's default body parser. This vulnerability been patched in version 2.8.16. There is now a global limit on the depth of a JSON object that can be parsed, which can be configured by the user if necessary. As a workaround, applications that do not need to parse a request body of type `application/json` can switch from the default body parser to another body parser that supports only the specific type of body they expect.
References
| ► | URL | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| playframework | playframework |
Version: >= 2.8.3, < 2.8.16 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T07:03:40.288Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-v8x6-59g4-5g3w"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/playframework/playframework/pull/11301"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-31018",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-23T15:54:36.120650Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-04-23T18:20:02.455Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "playframework",
"vendor": "playframework",
"versions": [
{
"status": "affected",
"version": "\u003e= 2.8.3, \u003c 2.8.16"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Play Framework is a web framework for Java and Scala. A denial of service vulnerability has been discovered in verions 2.8.3 through 2.8.15 of Play\u0027s forms library, in both the Scala and Java APIs. This can occur when using either the `Form#bindFromRequest` method on a JSON request body or the `Form#bind` method directly on a JSON value. If the JSON data being bound to the form contains a deeply-nested JSON object or array, the form binding implementation may consume all available heap space and cause an `OutOfMemoryError`. If executing on the default dispatcher and `akka.jvm-exit-on-fatal-error` is enabled\u2014as it is by default\u2014then this can crash the application process. `Form.bindFromRequest` is vulnerable when using any body parser that produces a type of `AnyContent` or `JsValue` in Scala, or one that can produce a `JsonNode` in Java. This includes Play\u0027s default body parser. This vulnerability been patched in version 2.8.16. There is now a global limit on the depth of a JSON object that can be parsed, which can be configured by the user if necessary. As a workaround, applications that do not need to parse a request body of type `application/json` can switch from the default body parser to another body parser that supports only the specific type of body they expect."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-06-02T16:45:13.000Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-v8x6-59g4-5g3w"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/playframework/playframework/pull/11301"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
}
],
"source": {
"advisory": "GHSA-v8x6-59g4-5g3w",
"discovery": "UNKNOWN"
},
"title": "Denial of service binding form from JSON in Play Framework",
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2022-31018",
"STATE": "PUBLIC",
"TITLE": "Denial of service binding form from JSON in Play Framework"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "playframework",
"version": {
"version_data": [
{
"version_value": "\u003e= 2.8.3, \u003c 2.8.16"
}
]
}
}
]
},
"vendor_name": "playframework"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Play Framework is a web framework for Java and Scala. A denial of service vulnerability has been discovered in verions 2.8.3 through 2.8.15 of Play\u0027s forms library, in both the Scala and Java APIs. This can occur when using either the `Form#bindFromRequest` method on a JSON request body or the `Form#bind` method directly on a JSON value. If the JSON data being bound to the form contains a deeply-nested JSON object or array, the form binding implementation may consume all available heap space and cause an `OutOfMemoryError`. If executing on the default dispatcher and `akka.jvm-exit-on-fatal-error` is enabled\u2014as it is by default\u2014then this can crash the application process. `Form.bindFromRequest` is vulnerable when using any body parser that produces a type of `AnyContent` or `JsValue` in Scala, or one that can produce a `JsonNode` in Java. This includes Play\u0027s default body parser. This vulnerability been patched in version 2.8.16. There is now a global limit on the depth of a JSON object that can be parsed, which can be configured by the user if necessary. As a workaround, applications that do not need to parse a request body of type `application/json` can switch from the default body parser to another body parser that supports only the specific type of body they expect."
}
]
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-400: Uncontrolled Resource Consumption"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/playframework/playframework/security/advisories/GHSA-v8x6-59g4-5g3w",
"refsource": "CONFIRM",
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-v8x6-59g4-5g3w"
},
{
"name": "https://github.com/playframework/playframework/pull/11301",
"refsource": "MISC",
"url": "https://github.com/playframework/playframework/pull/11301"
},
{
"name": "https://github.com/playframework/playframework/releases/tag/2.8.16",
"refsource": "MISC",
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
}
]
},
"source": {
"advisory": "GHSA-v8x6-59g4-5g3w",
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2022-31018",
"datePublished": "2022-06-02T16:45:13.000Z",
"dateReserved": "2022-05-18T00:00:00.000Z",
"dateUpdated": "2025-04-23T18:20:02.455Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2015-2156 (GCVE-0-2015-2156)
Vulnerability from cvelistv5
Published
2017-10-18 15:00
Modified
2024-08-06 05:10
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Netty before 3.9.8.Final, 3.10.x before 3.10.3.Final, 4.0.x before 4.0.28.Final, and 4.1.x before 4.1.0.Beta5 and Play Framework 2.x before 2.3.9 might allow remote attackers to bypass the httpOnly flag on cookies and obtain sensitive information by leveraging improper validation of cookie name and value characters.
References
| ► | URL | Tags | ||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T05:10:14.283Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2015-2156-HttpOnlyBypass"
},
{
"name": "FEDORA-2015-8713",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159379.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1222923"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/netty/netty/pull/3754"
},
{
"name": "FEDORA-2015-8684",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159166.html"
},
{
"name": "74704",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/74704"
},
{
"name": "[oss-security] 20150516 Netty/Play\u0027s Security Updates (CVE-2015-2156)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2015/05/17/1"
},
{
"name": "[pulsar-commits] 20190416 [GitHub] [pulsar] one70six opened a new issue #4057: Security Vulnerabilities - Black Duck Scan - Pulsar v.2.3.1",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8%40%3Ccommits.pulsar.apache.org%3E"
},
{
"name": "[cassandra-commits] 20191113 [jira] [Created] (CASSANDRA-15423) CVE-2015-2156 (Netty is vulnerable to Information Disclosure)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/a19bb1003b0d6cd22475ba83c019b4fc7facfef2a9e13f71132529d3%40%3Ccommits.cassandra.apache.org%3E"
},
{
"name": "[cassandra-commits] 20191114 [jira] [Commented] (CASSANDRA-15423) CVE-2015-2156 (Netty is vulnerable to Information Disclosure)",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/dc1275aef115bda172851a231c76c0932d973f9ffd8bc375c4aba769%40%3Ccommits.cassandra.apache.org%3E"
},
{
"name": "[druid-commits] 20191115 [GitHub] [incubator-druid] ccaominh opened a new pull request #8878: Address security vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe%40%3Ccommits.druid.apache.org%3E"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2015-05-08T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Netty before 3.9.8.Final, 3.10.x before 3.10.3.Final, 4.0.x before 4.0.28.Final, and 4.1.x before 4.1.0.Beta5 and Play Framework 2.x before 2.3.9 might allow remote attackers to bypass the httpOnly flag on cookies and obtain sensitive information by leveraging improper validation of cookie name and value characters."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-16T01:07:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2015-2156-HttpOnlyBypass"
},
{
"name": "FEDORA-2015-8713",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159379.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1222923"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/netty/netty/pull/3754"
},
{
"name": "FEDORA-2015-8684",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159166.html"
},
{
"name": "74704",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/74704"
},
{
"name": "[oss-security] 20150516 Netty/Play\u0027s Security Updates (CVE-2015-2156)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2015/05/17/1"
},
{
"name": "[pulsar-commits] 20190416 [GitHub] [pulsar] one70six opened a new issue #4057: Security Vulnerabilities - Black Duck Scan - Pulsar v.2.3.1",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8%40%3Ccommits.pulsar.apache.org%3E"
},
{
"name": "[cassandra-commits] 20191113 [jira] [Created] (CASSANDRA-15423) CVE-2015-2156 (Netty is vulnerable to Information Disclosure)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/a19bb1003b0d6cd22475ba83c019b4fc7facfef2a9e13f71132529d3%40%3Ccommits.cassandra.apache.org%3E"
},
{
"name": "[cassandra-commits] 20191114 [jira] [Commented] (CASSANDRA-15423) CVE-2015-2156 (Netty is vulnerable to Information Disclosure)",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/dc1275aef115bda172851a231c76c0932d973f9ffd8bc375c4aba769%40%3Ccommits.cassandra.apache.org%3E"
},
{
"name": "[druid-commits] 20191115 [GitHub] [incubator-druid] ccaominh opened a new pull request #8878: Address security vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe%40%3Ccommits.druid.apache.org%3E"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-2156",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Netty before 3.9.8.Final, 3.10.x before 3.10.3.Final, 4.0.x before 4.0.28.Final, and 4.1.x before 4.1.0.Beta5 and Play Framework 2.x before 2.3.9 might allow remote attackers to bypass the httpOnly flag on cookies and obtain sensitive information by leveraging improper validation of cookie name and value characters."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html",
"refsource": "CONFIRM",
"url": "http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html"
},
{
"name": "https://www.playframework.com/security/vulnerability/CVE-2015-2156-HttpOnlyBypass",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability/CVE-2015-2156-HttpOnlyBypass"
},
{
"name": "FEDORA-2015-8713",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159379.html"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1222923",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1222923"
},
{
"name": "https://github.com/netty/netty/pull/3754",
"refsource": "CONFIRM",
"url": "https://github.com/netty/netty/pull/3754"
},
{
"name": "FEDORA-2015-8684",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159166.html"
},
{
"name": "74704",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/74704"
},
{
"name": "[oss-security] 20150516 Netty/Play\u0027s Security Updates (CVE-2015-2156)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2015/05/17/1"
},
{
"name": "[pulsar-commits] 20190416 [GitHub] [pulsar] one70six opened a new issue #4057: Security Vulnerabilities - Black Duck Scan - Pulsar v.2.3.1",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8@%3Ccommits.pulsar.apache.org%3E"
},
{
"name": "[cassandra-commits] 20191113 [jira] [Created] (CASSANDRA-15423) CVE-2015-2156 (Netty is vulnerable to Information Disclosure)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/a19bb1003b0d6cd22475ba83c019b4fc7facfef2a9e13f71132529d3@%3Ccommits.cassandra.apache.org%3E"
},
{
"name": "[cassandra-commits] 20191114 [jira] [Commented] (CASSANDRA-15423) CVE-2015-2156 (Netty is vulnerable to Information Disclosure)",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/dc1275aef115bda172851a231c76c0932d973f9ffd8bc375c4aba769@%3Ccommits.cassandra.apache.org%3E"
},
{
"name": "[druid-commits] 20191115 [GitHub] [incubator-druid] ccaominh opened a new pull request #8878: Address security vulnerabilities",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe@%3Ccommits.druid.apache.org%3E"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2015-2156",
"datePublished": "2017-10-18T15:00:00",
"dateReserved": "2015-02-28T00:00:00",
"dateUpdated": "2024-08-06T05:10:14.283Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-12480 (GCVE-0-2020-12480)
Vulnerability from cvelistv5
Published
2020-08-17 20:45
Modified
2024-08-04 11:56
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
In Play Framework 2.6.0 through 2.8.1, the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can't be parsed.
References
| ► | URL | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T11:56:52.073Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-12480-CsrfBlacklistBypass"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In Play Framework 2.6.0 through 2.8.1, the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can\u0027t be parsed."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-08-17T20:45:28",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-12480-CsrfBlacklistBypass"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2020-12480",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Play Framework 2.6.0 through 2.8.1, the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can\u0027t be parsed."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.playframework.com/security/vulnerability",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability"
},
{
"name": "https://www.playframework.com/security/vulnerability/CVE-2020-12480-CsrfBlacklistBypass",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-12480-CsrfBlacklistBypass"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2020-12480",
"datePublished": "2020-08-17T20:45:28",
"dateReserved": "2020-04-30T00:00:00",
"dateUpdated": "2024-08-04T11:56:52.073Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-28923 (GCVE-0-2020-28923)
Vulnerability from cvelistv5
Published
2020-12-03 16:21
Modified
2024-08-04 16:41
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
An issue was discovered in Play Framework 2.8.0 through 2.8.4. Carefully crafted JSON payloads sent as a form field lead to Data Amplification. This affects users migrating from a Play version prior to 2.8.0 that used the Play Java API to serialize classes with protected or private fields to JSON.
References
| ► | URL | Tags |
|---|---|---|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T16:41:00.239Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-28923-ImproperRemovalofSensitiveInformationBeforeStorageorTransfer"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2020-11-09T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in Play Framework 2.8.0 through 2.8.4. Carefully crafted JSON payloads sent as a form field lead to Data Amplification. This affects users migrating from a Play version prior to 2.8.0 that used the Play Java API to serialize classes with protected or private fields to JSON."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-12-03T16:21:31",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-28923-ImproperRemovalofSensitiveInformationBeforeStorageorTransfer"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2020-28923",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in Play Framework 2.8.0 through 2.8.4. Carefully crafted JSON payloads sent as a form field lead to Data Amplification. This affects users migrating from a Play version prior to 2.8.0 that used the Play Java API to serialize classes with protected or private fields to JSON."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.playframework.com/security/vulnerability",
"refsource": "MISC",
"url": "https://www.playframework.com/security/vulnerability"
},
{
"name": "https://www.playframework.com/security/vulnerability/CVE-2020-28923-ImproperRemovalofSensitiveInformationBeforeStorageorTransfer",
"refsource": "CONFIRM",
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-28923-ImproperRemovalofSensitiveInformationBeforeStorageorTransfer"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2020-28923",
"datePublished": "2020-12-03T16:21:31",
"dateReserved": "2020-11-18T00:00:00",
"dateUpdated": "2024-08-04T16:41:00.239Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Vulnerability from fkie_nvd
Published
2018-07-17 12:29
Modified
2024-11-21 03:48
Severity ?
Summary
A directory traversal vulnerability has been found in the Assets controller in Play Framework 2.6.12 through 2.6.15 (fixed in 2.6.16) when running on Windows. It allows a remote attacker to download arbitrary files from the target server via specially crafted HTTP requests.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | * | |
| microsoft | windows | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "36492730-56EC-4847-BF13-6D234A803368",
"versionEndIncluding": "2.6.15",
"versionStartIncluding": "2.6.12",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A directory traversal vulnerability has been found in the Assets controller in Play Framework 2.6.12 through 2.6.15 (fixed in 2.6.16) when running on Windows. It allows a remote attacker to download arbitrary files from the target server via specially crafted HTTP requests."
},
{
"lang": "es",
"value": "Se ha encontrado una vulnerabilidad de salto de directorio en el controlador Assets en Play Framework desde la versi\u00f3n 2.6.12 hasta la 2.6.15 (solucionado en la 2.6.16) al ejecutarse en Windows. Permite que un atacante remoto descargue archivos arbitrarios desde el servidor objetivo mediante peticiones HTTP especialmente manipuladas."
}
],
"id": "CVE-2018-13864",
"lastModified": "2024-11-21T03:48:12.683",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-07-17T12:29:00.230",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2018-13864-PathTraversal"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2018-13864-PathTraversal"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-22"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2017-10-18 15:29
Modified
2025-04-20 01:37
Severity ?
Summary
Netty before 3.9.8.Final, 3.10.x before 3.10.3.Final, 4.0.x before 4.0.28.Final, and 4.1.x before 4.1.0.Beta5 and Play Framework 2.x before 2.3.9 might allow remote attackers to bypass the httpOnly flag on cookies and obtain sensitive information by leveraging improper validation of cookie name and value characters.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159379.html | Third Party Advisory | |
| cve@mitre.org | http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159166.html | Third Party Advisory | |
| cve@mitre.org | http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html | Vendor Advisory | |
| cve@mitre.org | http://www.openwall.com/lists/oss-security/2015/05/17/1 | Mailing List, Third Party Advisory | |
| cve@mitre.org | http://www.securityfocus.com/bid/74704 | Third Party Advisory, VDB Entry | |
| cve@mitre.org | https://bugzilla.redhat.com/show_bug.cgi?id=1222923 | Issue Tracking, Third Party Advisory | |
| cve@mitre.org | https://github.com/netty/netty/pull/3754 | Third Party Advisory | |
| cve@mitre.org | https://lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe%40%3Ccommits.druid.apache.org%3E | ||
| cve@mitre.org | https://lists.apache.org/thread.html/a19bb1003b0d6cd22475ba83c019b4fc7facfef2a9e13f71132529d3%40%3Ccommits.cassandra.apache.org%3E | ||
| cve@mitre.org | https://lists.apache.org/thread.html/dc1275aef115bda172851a231c76c0932d973f9ffd8bc375c4aba769%40%3Ccommits.cassandra.apache.org%3E | ||
| cve@mitre.org | https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8%40%3Ccommits.pulsar.apache.org%3E | ||
| cve@mitre.org | https://www.playframework.com/security/vulnerability/CVE-2015-2156-HttpOnlyBypass | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159379.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159166.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2015/05/17/1 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/74704 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=1222923 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/netty/netty/pull/3754 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe%40%3Ccommits.druid.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/a19bb1003b0d6cd22475ba83c019b4fc7facfef2a9e13f71132529d3%40%3Ccommits.cassandra.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/dc1275aef115bda172851a231c76c0932d973f9ffd8bc375c4aba769%40%3Ccommits.cassandra.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8%40%3Ccommits.pulsar.apache.org%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability/CVE-2015-2156-HttpOnlyBypass | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| netty | netty | * | |
| netty | netty | 3.10.0 | |
| netty | netty | 3.10.1 | |
| netty | netty | 3.10.2 | |
| netty | netty | 4.0.0 | |
| netty | netty | 4.0.1 | |
| netty | netty | 4.0.2 | |
| netty | netty | 4.0.3 | |
| netty | netty | 4.0.4 | |
| netty | netty | 4.0.5 | |
| netty | netty | 4.0.6 | |
| netty | netty | 4.0.7 | |
| netty | netty | 4.0.8 | |
| netty | netty | 4.0.9 | |
| netty | netty | 4.0.10 | |
| netty | netty | 4.0.11 | |
| netty | netty | 4.0.12 | |
| netty | netty | 4.0.13 | |
| netty | netty | 4.0.14 | |
| netty | netty | 4.0.15 | |
| netty | netty | 4.0.16 | |
| netty | netty | 4.0.17 | |
| netty | netty | 4.0.18 | |
| netty | netty | 4.0.19 | |
| netty | netty | 4.0.20 | |
| netty | netty | 4.0.21 | |
| netty | netty | 4.0.22 | |
| netty | netty | 4.0.23 | |
| netty | netty | 4.0.24 | |
| netty | netty | 4.0.25 | |
| netty | netty | 4.0.26 | |
| netty | netty | 4.0.27 | |
| netty | netty | 4.1.0 | |
| netty | netty | 4.1.0 | |
| netty | netty | 4.1.0 | |
| netty | netty | 4.1.0 | |
| lightbend | play_framework | 2.0 | |
| lightbend | play_framework | 2.0 | |
| lightbend | play_framework | 2.0 | |
| lightbend | play_framework | 2.0.2 | |
| lightbend | play_framework | 2.0.2 | |
| lightbend | play_framework | 2.0.2 | |
| lightbend | play_framework | 2.0.3 | |
| lightbend | play_framework | 2.0.3 | |
| lightbend | play_framework | 2.0.3 | |
| lightbend | play_framework | 2.0.4 | |
| lightbend | play_framework | 2.0.4 | |
| lightbend | play_framework | 2.0.4 | |
| lightbend | play_framework | 2.0.5 | |
| lightbend | play_framework | 2.0.5 | |
| lightbend | play_framework | 2.0.5 | |
| lightbend | play_framework | 2.0.6 | |
| lightbend | play_framework | 2.0.7 | |
| lightbend | play_framework | 2.0.8 | |
| lightbend | play_framework | 2.1.0 | |
| lightbend | play_framework | 2.1.1 | |
| lightbend | play_framework | 2.1.1 | |
| lightbend | play_framework | 2.2.0 | |
| lightbend | play_framework | 2.2.1 | |
| lightbend | play_framework | 2.2.2 | |
| lightbend | play_framework | 2.2.6 | |
| lightbend | play_framework | 2.3.0 | |
| lightbend | play_framework | 2.3.0 | |
| lightbend | play_framework | 2.3.0 | |
| lightbend | play_framework | 2.3.1 | |
| lightbend | play_framework | 2.3.2 | |
| lightbend | play_framework | 2.3.2 | |
| lightbend | play_framework | 2.3.2 | |
| lightbend | play_framework | 2.3.3 | |
| lightbend | play_framework | 2.3.4 | |
| lightbend | play_framework | 2.3.5 | |
| lightbend | play_framework | 2.3.6 | |
| lightbend | play_framework | 2.3.7 | |
| lightbend | play_framework | 2.3.8 | |
| playframework | play_framework | 2.0 | |
| playframework | play_framework | 2.0 | |
| playframework | play_framework | 2.0 | |
| playframework | play_framework | 2.0 | |
| playframework | play_framework | 2.0.1 | |
| playframework | play_framework | 2.1.1 | |
| playframework | play_framework | 2.1.1 | |
| playframework | play_framework | 2.1.1 | |
| playframework | play_framework | 2.1.2 | |
| playframework | play_framework | 2.1.2 | |
| playframework | play_framework | 2.1.2 | |
| playframework | play_framework | 2.1.3 | |
| playframework | play_framework | 2.1.3 | |
| playframework | play_framework | 2.1.3 | |
| playframework | play_framework | 2.1.4 | |
| playframework | play_framework | 2.1.4 | |
| playframework | play_framework | 2.1.4 | |
| playframework | play_framework | 2.1.5 | |
| playframework | play_framework | 2.1.6 | |
| playframework | play_framework | 2.1.6 | |
| playframework | play_framework | 2.2.0 | |
| playframework | play_framework | 2.2.0 | |
| playframework | play_framework | 2.2.0 | |
| playframework | play_framework | 2.2.0 | |
| playframework | play_framework | 2.2.0 | |
| playframework | play_framework | 2.2.1 | |
| playframework | play_framework | 2.2.2 | |
| playframework | play_framework | 2.2.2 | |
| playframework | play_framework | 2.2.2 | |
| playframework | play_framework | 2.2.2 | |
| playframework | play_framework | 2.2.3 | |
| playframework | play_framework | 2.2.3 | |
| playframework | play_framework | 2.2.3 | |
| playframework | play_framework | 2.2.4 | |
| playframework | play_framework | 2.2.5 | |
| playframework | play_framework | 2.3 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netty:netty:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AE9BE4D2-0AF8-4825-9108-52EF8BD6C7B5",
"versionEndIncluding": "3.9.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:3.10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "66A094D1-826C-4DCF-BF8F-0AA0F8A5CC5C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:3.10.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3F5609AE-1F05-4EDC-844F-E357BE1E02B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:3.10.2:*:*:*:*:*:*:*",
"matchCriteriaId": "39F54228-AE67-4A7E-9C2F-99D3754CC8CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "069A7F48-DDF9-4C29-829F-63480AC8252A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1657CCDD-547C-462F-84A6-5C7897A0DE3D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "48DEF144-095B-4A16-B1A0-540FFCB0571D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "34811757-A83B-4177-B256-17C75669CB4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "2F0B1676-F16F-49CB-A1D2-961236B29FB5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "9D5B2C70-1CA5-4285-B85A-C01A1F0D256F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "4223B041-EA1F-4EF5-9C56-93B47426D634",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "3CC66E4C-0291-4F01-B6FF-1E6ABFFE3DD3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "3FF070FD-09A2-453C-ABB0-57806785AC0B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "2DB8331D-6E3B-419A-A5D1-7FCA56B01D9B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A78B72B6-389E-4EE4-86D4-9C8499BAF7CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "79C9F0BF-82E7-4E8D-81E0-8BE38AC892FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "638159B5-DCB2-48F2-B98C-D02AA4B55567",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "8DD72B11-80BE-4EE8-8350-E84A4DE19A14",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.14:*:*:*:*:*:*:*",
"matchCriteriaId": "938E8F20-809C-41CF-90B3-16C4FA22BE7D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.15:*:*:*:*:*:*:*",
"matchCriteriaId": "7ECC0699-8544-4D5E-ACF9-C09A5EF7C6A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.16:*:*:*:*:*:*:*",
"matchCriteriaId": "3947E2CD-9E5C-4D8F-970E-9AFCEBB9BEA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.17:*:*:*:*:*:*:*",
"matchCriteriaId": "D14F96ED-9B74-446A-BDAA-37DA46BF1C52",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.18:*:*:*:*:*:*:*",
"matchCriteriaId": "490A338C-50BB-4292-B3E3-EBCB4D2A89F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.19:*:*:*:*:*:*:*",
"matchCriteriaId": "6F11CDD4-F2C1-4019-AF12-F2F31A5A36AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.20:*:*:*:*:*:*:*",
"matchCriteriaId": "8F172E1C-0264-4241-988D-7EB38188E029",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.21:*:*:*:*:*:*:*",
"matchCriteriaId": "07F517E7-0C8B-4562-ABF7-F2B5B1BA682E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.22:*:*:*:*:*:*:*",
"matchCriteriaId": "C776C471-B66F-4349-B7E9-D59012B53BC6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.23:*:*:*:*:*:*:*",
"matchCriteriaId": "D4D796E9-9D65-4E1B-91DA-5CBC829A4516",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.24:*:*:*:*:*:*:*",
"matchCriteriaId": "F64F7398-0C92-459B-809D-7BA543AEF058",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.25:*:*:*:*:*:*:*",
"matchCriteriaId": "316B7A3D-69B4-4F9B-80A6-AB9858E01743",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.26:*:*:*:*:*:*:*",
"matchCriteriaId": "C9B6111A-96A4-4E6F-B6C4-D0B85DD2CFAD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.0.27:*:*:*:*:*:*:*",
"matchCriteriaId": "CAF6D60E-C9FD-4A73-ACB8-06500ADD8486",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.1.0:beta1:*:*:*:*:*:*",
"matchCriteriaId": "8E71050A-DFA2-41E5-9544-5DFF5453B4EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.1.0:beta2:*:*:*:*:*:*",
"matchCriteriaId": "0CE17333-AA06-4AD0-AFE0-B240BD22597C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.1.0:beta3:*:*:*:*:*:*",
"matchCriteriaId": "62D878A0-678F-4D36-89B6-D9957EF8FC16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:netty:netty:4.1.0:beta4:*:*:*:*:*:*",
"matchCriteriaId": "11F45B0B-5D3E-48ED-A969-1EB8E9258A7D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0:rc3:*:*:*:*:*:*",
"matchCriteriaId": "9CBDD885-76D8-4A44-839F-7161A319CD21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0:rc4:*:*:*:*:*:*",
"matchCriteriaId": "CCCCBA8E-471B-4EE7-99D1-FCF228F396E0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0:rc5:*:*:*:*:*:*",
"matchCriteriaId": "95760FF9-A33C-4794-9585-79F29FF8218D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "49CEACD0-279B-418D-8679-22D6CD18CCC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "B8DFEB1B-2BC6-4A81-9D97-232D6BB51BAE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.2:rc2:*:*:*:*:*:*",
"matchCriteriaId": "4366138D-B4BC-450B-A52E-EA46CC9A2F5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "3E48B60E-F85B-4DC6-806A-94D424D4E7C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.3:rc1:*:*:*:*:*:*",
"matchCriteriaId": "F3F1ADCB-FDE4-4C43-BFEB-EA81524C1D56",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.3:rc2:*:*:*:*:*:*",
"matchCriteriaId": "7136FA34-EF5E-4F7B-8E78-85EA9B018758",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "E350767E-C5CD-4B3E-B70C-0D166B66F64E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.4:rc1:*:*:*:*:*:*",
"matchCriteriaId": "80DC4D2F-CCEE-4227-A76F-F9B339E298C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.4:rc2:*:*:*:*:*:*",
"matchCriteriaId": "C4555E3D-B28A-4D7F-8322-8C93E055A41F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "4A2EFEFB-CC1C-4453-9CAC-D37063E1D851",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.5:rc1:*:*:*:*:*:*",
"matchCriteriaId": "A202AEE2-B1B7-49BD-BA91-98A71E7FA5B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.5:rc2:*:*:*:*:*:*",
"matchCriteriaId": "36E51880-F5E5-47D6-BA90-B4C6E8ADE962",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "A3C80F35-3B8E-4F7D-9C6B-21585F2516E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "8763EA91-CF68-4142-9F0F-F16AA9CF0011",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "1535A9FA-42C2-40B6-96E6-CDBCE6F54076",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "3C5F034A-E343-4285-A7EB-FC60F12F73AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6F351418-832C-4994-B3BF-B0F0152EE810",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.1.1:rc1:*:*:*:*:*:*",
"matchCriteriaId": "F03EAA0F-848C-4FCF-927E-DAFAFFA7641C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "932C1D92-71AC-4520-A296-503BF0764E94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "F36EA7C0-669E-4D87-9E9C-FA3CEE565EEF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "80ED9605-6D97-4DB2-96A2-C5F0BD6DDF2B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.6:*:*:*:*:*:*:*",
"matchCriteriaId": "3E3107A2-7BA5-4490-98C4-A4FC127C07CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "3287C930-7E89-4FE9-9570-7D05A8727AAE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "475F2D6C-A82A-4607-AEEA-EB16DC7F3EEB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.0:rc2:*:*:*:*:*:*",
"matchCriteriaId": "81BCC634-6424-4D53-AE78-F00782F290DF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "EA9A457C-DA32-4094-9EF7-5DCBA4904CF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "95DE19B0-FDFD-4556-96F4-6D9470904F75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "89244DD5-3EA1-471F-B678-A6921D17A804",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.2:rc2:*:*:*:*:*:*",
"matchCriteriaId": "96B59DC4-58BB-424C-BEFD-DF7E43E39C21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "6CEFD24F-A241-44A7-9C2D-128F5C5F69BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.4:*:*:*:*:*:*:*",
"matchCriteriaId": "D286954C-BD26-4433-84D3-D0F37B61BB4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "EA2718B3-AE02-4C76-A17F-22B72016681A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "6F869944-14A6-4C7A-A096-7ABB0740B7B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.7:*:*:*:*:*:*:*",
"matchCriteriaId": "05A936F4-7FC3-45CD-AEBB-5DF105A5D698",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.8:*:*:*:*:*:*:*",
"matchCriteriaId": "E6EDA101-F379-4CE9-83FA-1F85A501EA30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "6DB9E2FF-60E9-4AF7-8893-688FD90C20BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.0:beta:*:*:*:*:*:*",
"matchCriteriaId": "52FEDFA6-7774-4946-86D7-5A2E9E727D01",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "22061490-43D6-4793-A150-6159A979F586",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.0:rc2:*:*:*:*:*:*",
"matchCriteriaId": "2D4E1C16-BE0D-4E09-9E44-FE85A9D04568",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "856EF408-705A-48B9-B806-2AA5EE52984E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.1:2.9.x-backport:*:*:*:*:*:*",
"matchCriteriaId": "E2E88D11-966D-4273-AE80-A8ADD93F7E33",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.1:rc1-2.9.x-backport:*:*:*:*:*:*",
"matchCriteriaId": "67A73F1E-3203-4EDE-A5FF-8225CCAEC652",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.1:rc2:*:*:*:*:*:*",
"matchCriteriaId": "23F4DA74-514C-433E-BE4F-756002431D2B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "344B07EE-75F3-4794-8AFB-C68E26AECBC1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "CCCB3504-8E6E-4825-A45B-EE1D5DBED376",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.2:rc2:*:*:*:*:*:*",
"matchCriteriaId": "085836CB-4832-4CBF-B2BB-E606C0F5261A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "021F9BAB-1DAD-49EE-8F37-1E4155F8C32E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.3:rc1:*:*:*:*:*:*",
"matchCriteriaId": "81FFB9E4-0CDB-4F9F-AAFC-5BAE1A2B7E5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.3:rc2:*:*:*:*:*:*",
"matchCriteriaId": "EC833EB6-FEE5-4A65-96E1-02E781D11354",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "FE38FB18-831C-4260-A70E-85FFB4048A90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.4:rc1:*:*:*:*:*:*",
"matchCriteriaId": "28889691-9C50-4E80-8893-F4A04176D881",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.4:rc2:*:*:*:*:*:*",
"matchCriteriaId": "87AE18E4-42C2-4827-807D-E9FAA6AA6685",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2A97A5A4-8D69-4514-9FF2-C7D7D2FF3FAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "ADB3F1A0-13DE-40F0-A368-D7967706054F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.1.6:rc1:*:*:*:*:*:*",
"matchCriteriaId": "04CE71EA-2251-4860-8343-68E89FB00507",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.0:m1:*:*:*:*:*:*",
"matchCriteriaId": "290E178F-F7F3-42B3-8B0F-B596F556646A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.0:m2:*:*:*:*:*:*",
"matchCriteriaId": "882AB7C8-2823-4FA7-95A7-D116421A055E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.0:m3:*:*:*:*:*:*",
"matchCriteriaId": "C57FF361-2274-4F9A-AD5A-BB0626BF7D68",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "F6C36CCE-6B7B-4346-81B2-40ACE8F2EE63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.0:rc2:*:*:*:*:*:*",
"matchCriteriaId": "947EF76E-2155-4191-AD7E-26A34B733B6A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.1:rc1:*:*:*:*:*:*",
"matchCriteriaId": "36149A37-5BF7-41EC-AD65-34F5DAFFC64B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "407B15E5-5355-4AE0-98E1-26B7C60D77A0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.2:rc2:*:*:*:*:*:*",
"matchCriteriaId": "28A72C43-6033-4E99-BF41-513E4C69E2D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.2:rc3:*:*:*:*:*:*",
"matchCriteriaId": "2E54E70F-8F06-4558-B725-045B379D6279",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.2:rc4:*:*:*:*:*:*",
"matchCriteriaId": "A8061B89-3B8D-4D38-9DA8-A52EC97CF966",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "D664F3EF-B07F-47BC-A9CF-6CD22CF73D98",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.3:rc1:*:*:*:*:*:*",
"matchCriteriaId": "878003F7-7BE7-473A-B0B7-1C26A9A02D89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.3:rc2:*:*:*:*:*:*",
"matchCriteriaId": "A2114F67-E72F-4559-8921-7567F0985ED0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "C991464B-52D4-4F70-91CE-E5FFDFCC6DD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2EDCCE92-D85D-453B-B13B-52FC888F340A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.3:m1:*:*:*:*:*:*",
"matchCriteriaId": "8CEE3098-76E1-4734-9292-09EE7FB13044",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Netty before 3.9.8.Final, 3.10.x before 3.10.3.Final, 4.0.x before 4.0.28.Final, and 4.1.x before 4.1.0.Beta5 and Play Framework 2.x before 2.3.9 might allow remote attackers to bypass the httpOnly flag on cookies and obtain sensitive information by leveraging improper validation of cookie name and value characters."
},
{
"lang": "es",
"value": "Netty en versiones anteriores a la 3.9.8.Final, 3.10.x anteriores a la 3.10.3.Final, 4.0.x anteriores a la 4.0.28.Final y 4.1.x anteriores a la 4.1.0.Beta5 y Play Framework 2.x en versiones anteriores a la 2.3.9 podr\u00eda permitir que atacantes remotos omitan el indicador httpOnly en las cookies y obtengan informaci\u00f3n sensible aprovechando la validaci\u00f3n incorrecta del nombre de la cookie y los caracteres del valor."
}
],
"id": "CVE-2015-2156",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-10-18T15:29:00.173",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159379.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159166.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2015/05/17/1"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/74704"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1222923"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/netty/netty/pull/3754"
},
{
"source": "cve@mitre.org",
"url": "https://lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe%40%3Ccommits.druid.apache.org%3E"
},
{
"source": "cve@mitre.org",
"url": "https://lists.apache.org/thread.html/a19bb1003b0d6cd22475ba83c019b4fc7facfef2a9e13f71132529d3%40%3Ccommits.cassandra.apache.org%3E"
},
{
"source": "cve@mitre.org",
"url": "https://lists.apache.org/thread.html/dc1275aef115bda172851a231c76c0932d973f9ffd8bc375c4aba769%40%3Ccommits.cassandra.apache.org%3E"
},
{
"source": "cve@mitre.org",
"url": "https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8%40%3Ccommits.pulsar.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2015-2156-HttpOnlyBypass"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159379.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159166.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2015/05/17/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/74704"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1222923"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/netty/netty/pull/3754"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/9317fd092b257a0815434b116a8af8daea6e920b6673f4fd5583d5fe%40%3Ccommits.druid.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/a19bb1003b0d6cd22475ba83c019b4fc7facfef2a9e13f71132529d3%40%3Ccommits.cassandra.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/dc1275aef115bda172851a231c76c0932d973f9ffd8bc375c4aba769%40%3Ccommits.cassandra.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.apache.org/thread.html/ff8dcfe29377088ab655fda9d585dccd5b1f07fabd94ae84fd60a7f8%40%3Ccommits.pulsar.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2015-2156-HttpOnlyBypass"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2020-08-17 21:15
Modified
2024-11-21 04:59
Severity ?
Summary
In Play Framework 2.6.0 through 2.8.1, the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can't be parsed.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| cve@mitre.org | https://www.playframework.com/security/vulnerability/CVE-2020-12480-CsrfBlacklistBypass | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability/CVE-2020-12480-CsrfBlacklistBypass | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | * | |
| lightbend | play_framework | * | |
| lightbend | play_framework | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EC6CC562-3BD7-47FA-892A-7A6C5EF1CEE7",
"versionEndIncluding": "2.6.25",
"versionStartIncluding": "2.6.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "67B6B90E-0049-4D6F-A9AE-C1BEF3A9B350",
"versionEndIncluding": "2.7.4",
"versionStartIncluding": "2.7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B480584D-B9A2-46ED-A7CD-61CD8051A234",
"versionEndIncluding": "2.8.1",
"versionStartIncluding": "2.8.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In Play Framework 2.6.0 through 2.8.1, the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can\u0027t be parsed."
},
{
"lang": "es",
"value": "En Play Framework versiones 2.6.0 hasta 2.8.1, el filtro CSRF puede ser omitido al hacer peticiones simples CORS con tipos de contenido que contienen par\u00e1metros que no pueden ser analizados."
}
],
"id": "CVE-2020-12480",
"lastModified": "2024-11-21T04:59:47.240",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-08-17T21:15:11.523",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-12480-CsrfBlacklistBypass"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-12480-CsrfBlacklistBypass"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-352"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2022-06-02 18:15
Modified
2024-11-21 07:03
Severity ?
5.9 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Summary
Play Framework is a web framework for Java and Scala. Verions prior to 2.8.16 are vulnerable to generation of error messages containing sensitive information. Play Framework, when run in dev mode, shows verbose errors for easy debugging, including an exception stack trace. Play does this by configuring its `DefaultHttpErrorHandler` to do so based on the application mode. In its Scala API Play also provides a static object `DefaultHttpErrorHandler` that is configured to always show verbose errors. This is used as a default value in some Play APIs, so it is possible to inadvertently use this version in production. It is also possible to improperly configure the `DefaultHttpErrorHandler` object instance as the injected error handler. Both of these situations could result in verbose errors displaying to users in a production application, which could expose sensitive information from the application. In particular, the constructor for `CORSFilter` and `apply` method for `CORSActionBuilder` use the static object `DefaultHttpErrorHandler` as a default value. This is patched in Play Framework 2.8.16. The `DefaultHttpErrorHandler` object has been changed to use the prod-mode behavior, and `DevHttpErrorHandler` has been introduced for the dev-mode behavior. A workaround is available. When constructing a `CORSFilter` or `CORSActionBuilder`, ensure that a properly-configured error handler is passed. Generally this should be done by using the `HttpErrorHandler` instance provided through dependency injection or through Play's `BuiltInComponents`. Ensure that the application is not using the `DefaultHttpErrorHandler` static object in any code that may be run in production.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| security-advisories@github.com | https://github.com/playframework/playframework/pull/11305 | Issue Tracking, Patch, Third Party Advisory | |
| security-advisories@github.com | https://github.com/playframework/playframework/releases/tag/2.8.16 | Release Notes, Third Party Advisory | |
| security-advisories@github.com | https://github.com/playframework/playframework/security/advisories/GHSA-p9p4-97g9-wcrh | Mitigation, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/playframework/playframework/pull/11305 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/playframework/playframework/releases/tag/2.8.16 | Release Notes, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/playframework/playframework/security/advisories/GHSA-p9p4-97g9-wcrh | Mitigation, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E641F3DB-3013-49F8-9E2E-082D808C9958",
"versionEndExcluding": "2.8.16",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Play Framework is a web framework for Java and Scala. Verions prior to 2.8.16 are vulnerable to generation of error messages containing sensitive information. Play Framework, when run in dev mode, shows verbose errors for easy debugging, including an exception stack trace. Play does this by configuring its `DefaultHttpErrorHandler` to do so based on the application mode. In its Scala API Play also provides a static object `DefaultHttpErrorHandler` that is configured to always show verbose errors. This is used as a default value in some Play APIs, so it is possible to inadvertently use this version in production. It is also possible to improperly configure the `DefaultHttpErrorHandler` object instance as the injected error handler. Both of these situations could result in verbose errors displaying to users in a production application, which could expose sensitive information from the application. In particular, the constructor for `CORSFilter` and `apply` method for `CORSActionBuilder` use the static object `DefaultHttpErrorHandler` as a default value. This is patched in Play Framework 2.8.16. The `DefaultHttpErrorHandler` object has been changed to use the prod-mode behavior, and `DevHttpErrorHandler` has been introduced for the dev-mode behavior. A workaround is available. When constructing a `CORSFilter` or `CORSActionBuilder`, ensure that a properly-configured error handler is passed. Generally this should be done by using the `HttpErrorHandler` instance provided through dependency injection or through Play\u0027s `BuiltInComponents`. Ensure that the application is not using the `DefaultHttpErrorHandler` static object in any code that may be run in production."
},
{
"lang": "es",
"value": "Play Framework es un framework web para Java y Scala. Las versiones anteriores a 2.8.16 son vulnerables a una generaci\u00f3n de mensajes de error que contienen informaci\u00f3n confidencial. Play Framework, cuando es ejecutado en modo dev, muestra errores verbose para facilitar la depuraci\u00f3n, incluyendo un seguimiento de la pila de excepciones. Play hace esto configurando su \"DefaultHttpErrorHandler\" para que lo haga en funci\u00f3n del modo de aplicaci\u00f3n. En su API Scala, Play tambi\u00e9n proporciona un objeto est\u00e1tico \"DefaultHttpErrorHandler\" que est\u00e1 configurado para mostrar siempre los errores verbose. Esto es usado como valor por defecto en algunas APIs de Play, por lo que es posible usar inadvertidamente esta versi\u00f3n en producci\u00f3n. Tambi\u00e9n es posible configurar incorrectamente la instancia del objeto \"DefaultHttpErrorHandler\" como administrador de errores inyectado. Ambas situaciones podr\u00edan resultar en que sean mostrados errores verbales a usuarios en una aplicaci\u00f3n de producci\u00f3n, lo que podr\u00eda exponer informaci\u00f3n confidencial de la aplicaci\u00f3n. En concreto, el constructor de \"CORSFilter\" y el m\u00e9todo \"apply\" de \"CORSActionBuilder\" usan el objeto est\u00e1tico \"DefaultHttpErrorHandler\" como valor por defecto. Esto ha sido corregido en Play Framework versi\u00f3n 2.8.16. El objeto \"DefaultHttpErrorHandler\" ha sido cambiado para usar el comportamiento del modo prod, y ha sido introducido \"DevHttpErrorHandler\" para el comportamiento del modo dev. Se presenta una mitigaci\u00f3n disponible. Cuando construya un \"CORSFilter\" o un \"CORSActionBuilder\", aseg\u00farese de que es pasado un manejador de errores correctamente configurado. Generalmente, esto deber\u00eda hacerse al usar la instancia \"HttpErrorHandler\" proporcionada mediante la inyecci\u00f3n de dependencia o mediante \"BuiltInComponents\" de Play. Aseg\u00farese de que la aplicaci\u00f3n no usa el objeto est\u00e1tico \"DefaultHttpErrorHandler\" en ning\u00fan c\u00f3digo que pueda ejecutarse en producci\u00f3n"
}
],
"id": "CVE-2022-31023",
"lastModified": "2024-11-21T07:03:44.027",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 3.6,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-06-02T18:15:09.820",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/pull/11305"
},
{
"source": "security-advisories@github.com",
"tags": [
"Release Notes",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mitigation",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-p9p4-97g9-wcrh"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/pull/11305"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Release Notes",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-p9p4-97g9-wcrh"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-209"
}
],
"source": "security-advisories@github.com",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2020-11-06 14:15
Modified
2024-11-21 05:20
Severity ?
Summary
In Play Framework 2.6.0 through 2.8.2, data amplification can occur when an application accepts multipart/form-data JSON input.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| cve@mitre.org | https://www.playframework.com/security/vulnerability/CVE-2020-26882-JsonParseDataAmplification | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability/CVE-2020-26882-JsonParseDataAmplification | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | * | |
| lightbend | play_framework | * | |
| lightbend | play_framework | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3070FD56-E4C1-4490-B287-AC7268481061",
"versionEndIncluding": "2.6.25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "45F6CAF2-7212-47FD-B320-E76CD22F2733",
"versionEndIncluding": "2.7.5",
"versionStartIncluding": "2.7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E76FAC23-38E0-40E5-B5D7-2686C744F59D",
"versionEndIncluding": "2.8.2",
"versionStartIncluding": "2.8.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In Play Framework 2.6.0 through 2.8.2, data amplification can occur when an application accepts multipart/form-data JSON input."
},
{
"lang": "es",
"value": "En Play Framework versiones 2.6.0 hasta 2.8.2, una amplificaci\u00f3n de datos puede ocurrir cuando una aplicaci\u00f3n acepta una entrada JSON multipart/form-data"
}
],
"id": "CVE-2020-26882",
"lastModified": "2024-11-21T05:20:24.367",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-11-06T14:15:16.253",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26882-JsonParseDataAmplification"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26882-JsonParseDataAmplification"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-674"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2019-11-05 15:15
Modified
2024-11-21 04:32
Severity ?
Summary
An issue was discovered in Lightbend Play Framework 2.5.x through 2.6.23. When configured to make requests using an authenticated HTTP proxy, play-ws may sometimes, typically under high load, when connecting to a target host using https, expose the proxy credentials to the target host.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://www.playframework.com/security/vulnerability | Release Notes, Vendor Advisory | |
| cve@mitre.org | https://www.playframework.com/security/vulnerability/CVE-2019-17598-PlayWSHttpConnectAuthorizationHeaders | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability | Release Notes, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability/CVE-2019-17598-PlayWSHttpConnectAuthorizationHeaders | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | * | |
| lightbend | play_framework | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "9F1FB742-DADC-4B7E-A652-D57E560FEB9F",
"versionEndIncluding": "2.5.19",
"versionStartIncluding": "2.5.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "539F3FCE-640A-43E0-8303-B702BF1B95FF",
"versionEndIncluding": "2.6.23",
"versionStartIncluding": "2.6.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in Lightbend Play Framework 2.5.x through 2.6.23. When configured to make requests using an authenticated HTTP proxy, play-ws may sometimes, typically under high load, when connecting to a target host using https, expose the proxy credentials to the target host."
},
{
"lang": "es",
"value": "Se descubri\u00f3 un problema en Lightbend Play Framework versiones 2.5.x hasta la versi\u00f3n 2.6.23. Cuando es configurado para realizar peticiones utilizando un proxy HTTP autenticado, play-ws puede algunas veces, generalmente bajo una carga alta, cuando se conecta a un host de destino usando https, exponer las credenciales del proxy al host de destino."
}
],
"id": "CVE-2019-17598",
"lastModified": "2024-11-21T04:32:36.667",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-11-05T15:15:12.153",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2019-17598-PlayWSHttpConnectAuthorizationHeaders"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2019-17598-PlayWSHttpConnectAuthorizationHeaders"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-326"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2020-11-06 14:15
Modified
2024-11-21 05:20
Severity ?
Summary
An issue was discovered in PlayJava in Play Framework 2.6.0 through 2.8.2. The body parsing of HTTP requests eagerly parses a payload given a Content-Type header. A deep JSON structure sent to a valid POST endpoint (that may or may not expect JSON payloads) causes a StackOverflowError and Denial of Service.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| cve@mitre.org | https://www.playframework.com/security/vulnerability/CVE-2020-27196-DosViaJsonStackOverflow | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability/CVE-2020-27196-DosViaJsonStackOverflow | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | * | |
| lightbend | play_framework | * | |
| lightbend | play_framework | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3070FD56-E4C1-4490-B287-AC7268481061",
"versionEndIncluding": "2.6.25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "45F6CAF2-7212-47FD-B320-E76CD22F2733",
"versionEndIncluding": "2.7.5",
"versionStartIncluding": "2.7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E76FAC23-38E0-40E5-B5D7-2686C744F59D",
"versionEndIncluding": "2.8.2",
"versionStartIncluding": "2.8.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in PlayJava in Play Framework 2.6.0 through 2.8.2. The body parsing of HTTP requests eagerly parses a payload given a Content-Type header. A deep JSON structure sent to a valid POST endpoint (that may or may not expect JSON payloads) causes a StackOverflowError and Denial of Service."
},
{
"lang": "es",
"value": "Se detect\u00f3 un problema en PlayJava en Play Framework versiones 2.6.0 hasta 2.8.2.\u0026#xa0;El an\u00e1lisis del cuerpo de peticiones HTTP analiza en\u00e9rgicamente una carga \u00fatil dado un encabezado Content-Type.\u0026#xa0;Una estructura JSON profunda enviada a un endpoint POST v\u00e1lido (que puede esperar o no cargas \u00fatiles JSON) causa un StackOverflowError y una Denegaci\u00f3n de Servicio"
}
],
"id": "CVE-2020-27196",
"lastModified": "2024-11-21T05:20:51.060",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-11-06T14:15:16.377",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-27196-DosViaJsonStackOverflow"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-27196-DosViaJsonStackOverflow"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2020-11-06 14:15
Modified
2024-11-21 05:20
Severity ?
Summary
In Play Framework 2.6.0 through 2.8.2, stack consumption can occur because of unbounded recursion during parsing of crafted JSON documents.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| cve@mitre.org | https://www.playframework.com/security/vulnerability/CVE-2020-26883-JsonParseUncontrolledRecursion | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability/CVE-2020-26883-JsonParseUncontrolledRecursion | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | * | |
| lightbend | play_framework | * | |
| lightbend | play_framework | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3070FD56-E4C1-4490-B287-AC7268481061",
"versionEndIncluding": "2.6.25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "45F6CAF2-7212-47FD-B320-E76CD22F2733",
"versionEndIncluding": "2.7.5",
"versionStartIncluding": "2.7.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E76FAC23-38E0-40E5-B5D7-2686C744F59D",
"versionEndIncluding": "2.8.2",
"versionStartIncluding": "2.8.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In Play Framework 2.6.0 through 2.8.2, stack consumption can occur because of unbounded recursion during parsing of crafted JSON documents."
},
{
"lang": "es",
"value": "En Play Framework versiones 2.6.0 hasta 2.8.2, el consumo de la pila puede ocurrir debido a una recursividad ilimitada durante el an\u00e1lisis de documentos JSON dise\u00f1ados"
}
],
"id": "CVE-2020-26883",
"lastModified": "2024-11-21T05:20:24.517",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-11-06T14:15:16.317",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26883-JsonParseUncontrolledRecursion"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-26883-JsonParseUncontrolledRecursion"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-674"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2020-12-03 17:15
Modified
2024-11-21 05:23
Severity ?
Summary
An issue was discovered in Play Framework 2.8.0 through 2.8.4. Carefully crafted JSON payloads sent as a form field lead to Data Amplification. This affects users migrating from a Play version prior to 2.8.0 that used the Play Java API to serialize classes with protected or private fields to JSON.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| cve@mitre.org | https://www.playframework.com/security/vulnerability/CVE-2020-28923-ImproperRemovalofSensitiveInformationBeforeStorageorTransfer | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.playframework.com/security/vulnerability/CVE-2020-28923-ImproperRemovalofSensitiveInformationBeforeStorageorTransfer | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1691C11B-FC50-420B-AC6A-6B91765EF34D",
"versionEndIncluding": "2.8.4",
"versionStartIncluding": "2.8.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in Play Framework 2.8.0 through 2.8.4. Carefully crafted JSON payloads sent as a form field lead to Data Amplification. This affects users migrating from a Play version prior to 2.8.0 that used the Play Java API to serialize classes with protected or private fields to JSON."
},
{
"lang": "es",
"value": "Se detect\u00f3 un problema en Play Framework versiones 2.8.0 hasta 2.8.4. Las cargas \u00fatiles JSON cuidadosamente dise\u00f1adas enviadas como un campo de formulario conllevan a una Amplificaci\u00f3n de Datos. Esto afecta a usuarios que migran desde una versi\u00f3n de Play anterior a 2.8.0, que usaba la API Play Java para serializar clases con campos protegidos o privados para JSON"
}
],
"id": "CVE-2020-28923",
"lastModified": "2024-11-21T05:23:18.150",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.2,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-12-03T17:15:13.287",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-28923-ImproperRemovalofSensitiveInformationBeforeStorageorTransfer"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.playframework.com/security/vulnerability/CVE-2020-28923-ImproperRemovalofSensitiveInformationBeforeStorageorTransfer"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2017-12-29 22:29
Modified
2025-04-20 01:37
Severity ?
Summary
XML external entity (XXE) vulnerability in the Java XML processing functionality in Play before 2.2.6 and 2.3.x before 2.3.5 might allow remote attackers to read arbitrary files, cause a denial of service, or have unspecified other impact via crafted XML data.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| secalert@redhat.com | https://groups.google.com/forum/#%21msg/play-framework/7uNX_ImTW08/AogWSjsTAyQJ | ||
| secalert@redhat.com | https://groups.google.com/forum/#%21topic/play-framework/WdbFvemsFDQ | ||
| secalert@redhat.com | https://infocon.org/cons/SyScan/SyScan%202015%20Singapore/SyScan%202015%20Singapore%20presentations/SyScan15%20David%20Jorm%20-%20Finding%20and%20exploiting%20novel%20flaws%20in%20Java%20software.pdf | Issue Tracking, Third Party Advisory | |
| secalert@redhat.com | https://playframework.com/security/vulnerability/CVE-2014-3630-XmlExternalEntity | Issue Tracking, Mitigation, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://groups.google.com/forum/#%21msg/play-framework/7uNX_ImTW08/AogWSjsTAyQJ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://groups.google.com/forum/#%21topic/play-framework/WdbFvemsFDQ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://infocon.org/cons/SyScan/SyScan%202015%20Singapore/SyScan%202015%20Singapore%20presentations/SyScan15%20David%20Jorm%20-%20Finding%20and%20exploiting%20novel%20flaws%20in%20Java%20software.pdf | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://playframework.com/security/vulnerability/CVE-2014-3630-XmlExternalEntity | Issue Tracking, Mitigation, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | 2.2.0 | |
| lightbend | play_framework | 2.2.0 | |
| lightbend | play_framework | 2.2.0 | |
| lightbend | play_framework | 2.2.0 | |
| lightbend | play_framework | 2.2.1 | |
| lightbend | play_framework | 2.2.2 | |
| lightbend | play_framework | 2.3.0 | |
| lightbend | play_framework | 2.3.0 | |
| lightbend | play_framework | 2.3.0 | |
| lightbend | play_framework | 2.3.1 | |
| lightbend | play_framework | 2.3.2 | |
| lightbend | play_framework | 2.3.2 | |
| lightbend | play_framework | 2.3.2 | |
| lightbend | play_framework | 2.3.3 | |
| lightbend | play_framework | 2.3.4 | |
| playframework | play_framework | 2.2.0 | |
| playframework | play_framework | 2.2.1 | |
| playframework | play_framework | 2.2.2 | |
| playframework | play_framework | 2.2.2 | |
| playframework | play_framework | 2.2.2 | |
| playframework | play_framework | 2.2.2 | |
| playframework | play_framework | 2.2.3 | |
| playframework | play_framework | 2.2.4 | |
| playframework | play_framework | 2.2.5 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.0:-:*:*:*:*:*:*",
"matchCriteriaId": "F790A14D-13BD-4924-9B56-BB73D7AB9441",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.0:milestone1:*:*:*:*:*:*",
"matchCriteriaId": "63908B48-9D7B-47E1-9531-70AD5EF6351D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.0:milestone2:*:*:*:*:*:*",
"matchCriteriaId": "31B193D1-A0A7-4707-85B3-450126229618",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.0:milestone3:*:*:*:*:*:*",
"matchCriteriaId": "0099803B-5FDB-41C2-A0AA-3C40B6A1174D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.1:-:*:*:*:*:*:*",
"matchCriteriaId": "9D0F9F7F-6BAA-4BFE-9EF6-5FDC89B5A100",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.2.2:-:*:*:*:*:*:*",
"matchCriteriaId": "1ED49591-2830-4388-841E-BB774CE18E88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.0:-:*:*:*:*:*:*",
"matchCriteriaId": "CE253560-BABE-4917-80AE-92BE1AE41F04",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "475F2D6C-A82A-4607-AEEA-EB16DC7F3EEB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.0:rc2:*:*:*:*:*:*",
"matchCriteriaId": "81BCC634-6424-4D53-AE78-F00782F290DF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "EA9A457C-DA32-4094-9EF7-5DCBA4904CF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.2:-:*:*:*:*:*:*",
"matchCriteriaId": "9075EEDA-8FC6-4CD6-9420-0125E7B9A001",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "89244DD5-3EA1-471F-B678-A6921D17A804",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.2:rc2:*:*:*:*:*:*",
"matchCriteriaId": "96B59DC4-58BB-424C-BEFD-DF7E43E39C21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "6CEFD24F-A241-44A7-9C2D-128F5C5F69BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:lightbend:play_framework:2.3.4:*:*:*:*:*:*:*",
"matchCriteriaId": "D286954C-BD26-4433-84D3-D0F37B61BB4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "F6C36CCE-6B7B-4346-81B2-40ACE8F2EE63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.1:rc1:*:*:*:*:*:*",
"matchCriteriaId": "36149A37-5BF7-41EC-AD65-34F5DAFFC64B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "407B15E5-5355-4AE0-98E1-26B7C60D77A0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.2:rc2:*:*:*:*:*:*",
"matchCriteriaId": "28A72C43-6033-4E99-BF41-513E4C69E2D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.2:rc3:*:*:*:*:*:*",
"matchCriteriaId": "2E54E70F-8F06-4558-B725-045B379D6279",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.2:rc4:*:*:*:*:*:*",
"matchCriteriaId": "A8061B89-3B8D-4D38-9DA8-A52EC97CF966",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "D664F3EF-B07F-47BC-A9CF-6CD22CF73D98",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "C991464B-52D4-4F70-91CE-E5FFDFCC6DD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:playframework:play_framework:2.2.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2EDCCE92-D85D-453B-B13B-52FC888F340A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "XML external entity (XXE) vulnerability in the Java XML processing functionality in Play before 2.2.6 and 2.3.x before 2.3.5 might allow remote attackers to read arbitrary files, cause a denial of service, or have unspecified other impact via crafted XML data."
},
{
"lang": "es",
"value": "Vulnerabilidad de XEE (XML External Entity) en la funcionalidad de procesamiento de Java XML en Play, en versiones anteriores a la 2.2.6 y versiones 2.3.x anteriores a la 2.3.5, podr\u00eda permitir a atacantes remotos leer archivos arbitrarios, provocar una denegaci\u00f3n de servicio (DoS) o causar otro tipo de impacto no especificado mediante datos XML manipulados."
}
],
"id": "CVE-2014-3630",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-12-29T22:29:00.363",
"references": [
{
"source": "secalert@redhat.com",
"url": "https://groups.google.com/forum/#%21msg/play-framework/7uNX_ImTW08/AogWSjsTAyQJ"
},
{
"source": "secalert@redhat.com",
"url": "https://groups.google.com/forum/#%21topic/play-framework/WdbFvemsFDQ"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://infocon.org/cons/SyScan/SyScan%202015%20Singapore/SyScan%202015%20Singapore%20presentations/SyScan15%20David%20Jorm%20-%20Finding%20and%20exploiting%20novel%20flaws%20in%20Java%20software.pdf"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Mitigation",
"Vendor Advisory"
],
"url": "https://playframework.com/security/vulnerability/CVE-2014-3630-XmlExternalEntity"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://groups.google.com/forum/#%21msg/play-framework/7uNX_ImTW08/AogWSjsTAyQJ"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://groups.google.com/forum/#%21topic/play-framework/WdbFvemsFDQ"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://infocon.org/cons/SyScan/SyScan%202015%20Singapore/SyScan%202015%20Singapore%20presentations/SyScan15%20David%20Jorm%20-%20Finding%20and%20exploiting%20novel%20flaws%20in%20Java%20software.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Mitigation",
"Vendor Advisory"
],
"url": "https://playframework.com/security/vulnerability/CVE-2014-3630-XmlExternalEntity"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-611"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2022-06-02 17:15
Modified
2024-11-21 07:03
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Play Framework is a web framework for Java and Scala. A denial of service vulnerability has been discovered in verions 2.8.3 through 2.8.15 of Play's forms library, in both the Scala and Java APIs. This can occur when using either the `Form#bindFromRequest` method on a JSON request body or the `Form#bind` method directly on a JSON value. If the JSON data being bound to the form contains a deeply-nested JSON object or array, the form binding implementation may consume all available heap space and cause an `OutOfMemoryError`. If executing on the default dispatcher and `akka.jvm-exit-on-fatal-error` is enabled—as it is by default—then this can crash the application process. `Form.bindFromRequest` is vulnerable when using any body parser that produces a type of `AnyContent` or `JsValue` in Scala, or one that can produce a `JsonNode` in Java. This includes Play's default body parser. This vulnerability been patched in version 2.8.16. There is now a global limit on the depth of a JSON object that can be parsed, which can be configured by the user if necessary. As a workaround, applications that do not need to parse a request body of type `application/json` can switch from the default body parser to another body parser that supports only the specific type of body they expect.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| security-advisories@github.com | https://github.com/playframework/playframework/pull/11301 | Patch, Third Party Advisory | |
| security-advisories@github.com | https://github.com/playframework/playframework/releases/tag/2.8.16 | Release Notes, Third Party Advisory | |
| security-advisories@github.com | https://github.com/playframework/playframework/security/advisories/GHSA-v8x6-59g4-5g3w | Mitigation, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/playframework/playframework/pull/11301 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/playframework/playframework/releases/tag/2.8.16 | Release Notes, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/playframework/playframework/security/advisories/GHSA-v8x6-59g4-5g3w | Mitigation, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| lightbend | play_framework | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lightbend:play_framework:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4BBDB71E-9591-43F8-B82A-139C92ADDAA4",
"versionEndIncluding": "2.8.15",
"versionStartIncluding": "2.8.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Play Framework is a web framework for Java and Scala. A denial of service vulnerability has been discovered in verions 2.8.3 through 2.8.15 of Play\u0027s forms library, in both the Scala and Java APIs. This can occur when using either the `Form#bindFromRequest` method on a JSON request body or the `Form#bind` method directly on a JSON value. If the JSON data being bound to the form contains a deeply-nested JSON object or array, the form binding implementation may consume all available heap space and cause an `OutOfMemoryError`. If executing on the default dispatcher and `akka.jvm-exit-on-fatal-error` is enabled\u2014as it is by default\u2014then this can crash the application process. `Form.bindFromRequest` is vulnerable when using any body parser that produces a type of `AnyContent` or `JsValue` in Scala, or one that can produce a `JsonNode` in Java. This includes Play\u0027s default body parser. This vulnerability been patched in version 2.8.16. There is now a global limit on the depth of a JSON object that can be parsed, which can be configured by the user if necessary. As a workaround, applications that do not need to parse a request body of type `application/json` can switch from the default body parser to another body parser that supports only the specific type of body they expect."
},
{
"lang": "es",
"value": "Play Framework es un framework web para Java y Scala. Se ha detectado una vulnerabilidad de denegaci\u00f3n de servicio en las versiones 2.8.3 a 2.8.15 de la biblioteca de formularios de Play, tanto en la API de Scala como en la de Java. Esto puede ocurrir cuando es usado el m\u00e9todo \"Form#bindFromRequest\" sobre un cuerpo de petici\u00f3n JSON o el m\u00e9todo \"Form#bind\" directamente sobre un valor JSON. Si los datos JSON que son vinculados al formulario contienen un objeto JSON anidado profundamente o un array, la implementaci\u00f3n de la vinculaci\u00f3n del formulario puede consumir todo el espacio disponible en la pila y causar un \"OutOfMemoryError\". Si es ejecutado en el despachador por defecto y \"akka.jvm-exit-on-fatal-error\" est\u00e1 habilitado -como lo est\u00e1 por defecto- entonces esto puede bloquear el proceso de la aplicaci\u00f3n. \"Form.bindFromRequest\" es vulnerable cuando es usado cualquier analizador de cuerpo que produce un tipo de \"AnyContent\" o \"JsValue\" en Scala, o uno que puede producir un \"JsonNode\" en Java. Esto incluye el analizador de cuerpos por defecto de Play. Esta vulnerabilidad ha sido parcheada en versi\u00f3n 2.8.16. Ahora se presenta un l\u00edmite global en la profundidad de un objeto JSON que puede ser analizado, que puede ser configurado por el usuario si es necesario. Como mitigaci\u00f3n, las aplicaciones que no necesiten analizar un cuerpo de petici\u00f3n de tipo \"application/json\" pueden cambiar el analizador de cuerpos por defecto por otro que s\u00f3lo soporte el tipo de cuerpo espec\u00edfico que esperan"
}
],
"id": "CVE-2022-31018",
"lastModified": "2024-11-21T07:03:43.410",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-06-02T17:15:07.617",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/pull/11301"
},
{
"source": "security-advisories@github.com",
"tags": [
"Release Notes",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mitigation",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-v8x6-59g4-5g3w"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/pull/11301"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Release Notes",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/releases/tag/2.8.16"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Third Party Advisory"
],
"url": "https://github.com/playframework/playframework/security/advisories/GHSA-v8x6-59g4-5g3w"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
],
"source": "security-advisories@github.com",
"type": "Primary"
}
]
}