CVE-2023-36479
Description
Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user sends a request to a org.eclipse.jetty.servlets.CGI Servlet for a binary with a space in its name, the servlet will escape the command by wrapping it in quotation marks. This wrapped command, plus an optional command prefix, will then be executed through a call to Runtime.exec. If the original binary name provided by the user contains a quotation mark followed by a space, the resulting command line will contain multiple tokens instead of one. This issue was patched in version 9.4.52, 10.0.16, 11.0.16 and 12.0.0-beta2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.eclipse.jetty:jetty-servletsMaven | >= 9.0.0, < 9.4.52 | 9.4.52 |
org.eclipse.jetty:jetty-servletsMaven | >= 10.0.0, < 10.0.16 | 10.0.16 |
org.eclipse.jetty:jetty-servletsMaven | >= 11.0.0, < 11.0.16 | 11.0.16 |
org.eclipse.jetty.ee10:jetty-ee10-servletsMaven | < 12.0.0-beta2 | 12.0.0-beta2 |
org.eclipse.jetty.ee9:jetty-ee9-servletsMaven | < 12.0.0-beta2 | 12.0.0-beta2 |
org.eclipse.jetty.ee8:jetty-ee8-servletsMaven | < 12.0.0-beta2 | 12.0.0-beta2 |
Affected products
25- osv-coords24 versionspkg:apk/chainguard/apache-hoppkg:apk/chainguard/apache-hop-fipspkg:apk/chainguard/cassandra-reaperpkg:apk/chainguard/cloudwatch-exporterpkg:apk/chainguard/kafkapkg:apk/wolfi/cassandra-reaperpkg:apk/wolfi/cloudwatch-exporterpkg:apk/wolfi/kafkapkg:maven/org.eclipse.jetty.ee10/jetty-ee10-servletspkg:maven/org.eclipse.jetty.ee8/jetty-ee8-servletspkg:maven/org.eclipse.jetty.ee9/jetty-ee9-servletspkg:maven/org.eclipse.jetty/jetty-servletspkg:rpm/opensuse/jetty-minimal&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/jetty-minimal&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/jetty-minimal&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/jetty-minimal&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/jetty-minimal&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/jetty-minimal&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/jetty-minimal&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP4pkg:rpm/suse/jetty-minimal&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5pkg:rpm/suse/jetty-minimal&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/jetty-minimal&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/jetty-minimal&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/jetty-minimal&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3
< 2.15.0-r2+ 23 more
- (no CPE)range: < 2.15.0-r2
- (no CPE)range: < 2.15.0-r2
- (no CPE)range: < 4.0.1-r1
- (no CPE)range: < 0.15.4-r3
- (no CPE)range: < 3.5.1-r2
- (no CPE)range: < 4.0.1-r1
- (no CPE)range: < 0.15.4-r3
- (no CPE)range: < 3.5.1-r2
- (no CPE)range: < 12.0.0-beta2
- (no CPE)range: < 12.0.0-beta2
- (no CPE)range: < 12.0.0-beta2
- (no CPE)range: >= 9.0.0, < 9.4.52
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- (no CPE)range: < 9.4.53-150200.3.22.1
- eclipse/jetty.projectv5Range: >= 9.0.0, <= 9.4.51
Patches
Vulnerability mechanics
References
8- github.com/eclipse/jetty.project/pull/9516nvdPatchWEB
- github.com/eclipse/jetty.project/pull/9888nvdPatchWEB
- github.com/eclipse/jetty.project/pull/9889nvdPatchWEB
- github.com/eclipse/jetty.project/security/advisories/GHSA-3gh6-v5v9-6v9jnvdExploitPatchVendor AdvisoryWEB
- github.com/advisories/GHSA-3gh6-v5v9-6v9jghsaADVISORY
- lists.debian.org/debian-lts-announce/2023/09/msg00039.htmlnvdMailing ListThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2023-36479ghsaADVISORY
- www.debian.org/security/2023/dsa-5507nvdMailing ListThird Party AdvisoryWEB
News mentions
0No linked articles in our index yet.