CVE-2018-1289

8.8HIGH

Key Information:

Vendor: Apache
Status: Apache Fineract
Vendor: CVE Published:; 20 April 2018

Summary

In Apache Fineract versions 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, the system exposes different REST end points to query domain specific entities with a Query Parameter 'orderBy' and 'sortOrder' which are appended directly with SQL statements. A hacker/user can inject/draft the 'orderBy' and 'sortOrder' query parameter in such a way to read/update the data for which he doesn't have authorization.

Affected Version(s)

Apache Fineract 1.0.0

Apache Fineract 0.6.0-incubating

Apache Fineract 0.5.0-incubating

References

http://www.securityfocus.com/bid/104005

vdb-entryx_refsource_BID

https://lists.apache.org/thread.html/4a1312b18ed2979fba9e...

mailing-listx_refsource_MLIST

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 20, 2018
Vulnerability Reserved
Dec 7, 2017