CVE-2022-25842
published 2022-05-01CVE-2022-25842: All versions of package com.alibaba.oneagent:one-java-agent-plugin are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) using a specially…
PriorityP260critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
3.56%
87.9th percentile
All versions of package com.alibaba.oneagent:one-java-agent-plugin are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) using a specially crafted archive that holds directory traversal filenames (e.g. ../../evil.exe). The attacker can overwrite executable files and either invoke them remotely or wait for the system or user to call them, thus achieving remote command execution on the victim’s machine.
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Path Traversal in com.alibaba.oneagent:one-java-agent-plugin
ghsa·2022-05-03
CVE-2022-25842 [MEDIUM] CWE-22 Path Traversal in com.alibaba.oneagent:one-java-agent-plugin
Path Traversal in com.alibaba.oneagent:one-java-agent-plugin
All versions of package `com.alibaba.oneagent:one-java-agent-plugin` are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) using a specially crafted archive that holds directory traversal filenames (e.g. `../../evil.exe`). The attacker can overwrite executable files and either invoke them remotely or wait for the system or user to call them, thus achieving remote command execution on the victim’s machine.
OSV
Path Traversal in com.alibaba.oneagent:one-java-agent-plugin
osv·2022-05-03
CVE-2022-25842 [MEDIUM] Path Traversal in com.alibaba.oneagent:one-java-agent-plugin
Path Traversal in com.alibaba.oneagent:one-java-agent-plugin
All versions of package `com.alibaba.oneagent:one-java-agent-plugin` are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) using a specially crafted archive that holds directory traversal filenames (e.g. `../../evil.exe`). The attacker can overwrite executable files and either invoke them remotely or wait for the system or user to call them, thus achieving remote command execution on the victim’s machine.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/alibaba/one-java-agent/blob/1f399a2299a8a409d15ea6111a7098629b8f1050/one-java-agent-plugin/src/main/java/com/alibaba/oneagent/utils/IOUtils.javahttps://github.com/alibaba/one-java-agent/pull/29https://github.com/alibaba/one-java-agent/pull/29/commits/359603b63fc6c59d8b57e061c171954bab3433bfhttps://snyk.io/vuln/SNYK-JAVA-COMALIBABAONEAGENT-2407874https://github.com/alibaba/one-java-agent/blob/1f399a2299a8a409d15ea6111a7098629b8f1050/one-java-agent-plugin/src/main/java/com/alibaba/oneagent/utils/IOUtils.javahttps://github.com/alibaba/one-java-agent/pull/29https://github.com/alibaba/one-java-agent/pull/29/commits/359603b63fc6c59d8b57e061c171954bab3433bfhttps://snyk.io/vuln/SNYK-JAVA-COMALIBABAONEAGENT-2407874
2022-05-01
Published