⚠ Actively exploited
Added to CISA KEV on 2021-12-10. Federal agencies required to patch by 2022-06-10. Required action: Apply updates per vendor instructions..

CVE-2010-1871Expression Language Injection in Redhat Jboss Enterprise Application Platform

CWE-917Expression Language InjectionCWE-20Improper Input Validation11 documents10 sources
Severity
8.8HIGHNVD
EPSS
93.7%
top 0.15%
CISA KEV
KEV
Added 2021-12-10
Due 2022-06-10
Exploit
Exploited in wild
Active exploitation observed
Affected products
1
Redhat Jboss Enterprise Application Platform
Timeline
PublishedAug 5
KEV addedDec 10
Latest updateMay 17
KEV dueJun 10
CISA Required Action: Apply updates per vendor instructions.

Description

JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 4.3.0 for Red Hat Linux, does not properly sanitize inputs for JBoss Expression Language (EL) expressions, which allows remote attackers to execute arbitrary code via a crafted URL. NOTE: this is only a vulnerability when the Java Security Manager is not properly configured.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

🔴Vulnerability Details

3
GHSA
GHSA-r6fv-qmrc-3h24: JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 42022-05-17
CVEList
CVE-2010-1871: JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 42010-08-04
VulnCheck
Red Hat Linux JBoss Seam 2 Remote Code Execution Vulnerability2010

💥Exploits & PoCs

3
Exploit-DB
JBoss Seam 2 - Arbitrary File Upload / Execution (Metasploit)2015-04-06
Metasploit
JBoss Seam 2 File Upload and Execute
Metasploit
JBoss Seam 2 Remote Command Execution

📋Vendor Advisories

2
CISA
Red Hat Linux JBoss Seam 2 Remote Code Execution Vulnerability2021-12-10
Red Hat
Seam2: Improper sanitization of parametrized JBoss EL expressions (ACE)2010-07-27

🕵️Threat Intelligence

1
Qualys
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR | Qualys2022-02-23

💬Community

1
Bugzilla
CVE-2010-1871 JBoss Seam / Seam2: Improper sanitization of parametrized JBoss EL expressions (ACE)2010-07-19
CVE-2010-1871 — Expression Language Injection in Redhat | cvebase