Local Privilege Escalation in Eclipse Jetty on Unix Systems
CVE-2020-27216

7HIGH

Key Information:

Vendor: The Eclipse Foundation
Status: Eclipse Jetty
Vendor: CVE Published:; 23 October 2020

What is CVE-2020-27216?

In certain versions of Eclipse Jetty, a vulnerability exists where the system's temporary directory is shared among all users, creating the potential for local privilege escalation. An attacker can race against legitimate processes to create a subdirectory, ultimately gaining access to unpacked web applications and their associated files like JAR and JSP files. If the attacker successfully executes code from this temporary directory, they could escalate their privileges on the system.

Affected Version(s)

Eclipse Jetty 1.0 to 9.4.32.v20200930

Eclipse Jetty 10.0.0.alpha1 to 10.0.0.beta2

Eclipse Jetty 11.0.0.alpha1 to 11.0.0.beta2

References

https://bugs.eclipse.org/bugs/show_bug.cgi?id=567921

x_refsource_CONFIRM

https://github.com/eclipse/jetty.project/security/advisor...

x_refsource_CONFIRM

https://lists.apache.org/thread.html/re08b03cd1754b32f342...

mailing-listx_refsource_MLIST

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 23, 2020
Vulnerability Reserved
Oct 19, 2020

The Eclipse Foundation

What is CVE-2020-27216?

Affected Version(s)

References

CVSS V3.1

Timeline