Remote Code Execution in Eclipse RAP on Windows
CVE-2023-4760

7.6HIGH

Key Information:

Vendor: Eclipse Foundation
Status: Eclipse Rap
Vendor: CVE Published:; 21 September 2023

What is CVE-2023-4760?

A vulnerability in Eclipse RAP allows an attacker to exploit the FileUpload component to execute arbitrary code on Windows systems. This occurs due to improper handling of file names in the FileUploadProcessor.stripFileName method, where backslashes in file paths are not adequately sanitized. Consequently, attackers can upload malicious files to web applications hosted on Tomcat servers. For example, a crafted file path such as /....\webapps\shell.war can result in the file being stored improperly, exposing the system to potential remote code execution threats. It is crucial for users of affected Eclipse RAP versions to implement security measures and apply available patches to mitigate this risk.

Affected Version(s)

Eclipse RAP Windows 3.0.0 <= 3.25.0

References

https://gitlab.eclipse.org/security/vulnerability-reports...

https://github.com/eclipse-rap/org.eclipse.rap/pull/141

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 21, 2023
Vulnerability Reserved
Sep 4, 2023

Eclipse Foundation

What is CVE-2023-4760?

Affected Version(s)

References

CVSS V3.1

Timeline