CVE-2023-28754

CWE-502 — Deserialization of Untrusted Data4 documents4 sources

Severity

8.8HIGH

EPSS

0.3%

top 47.93%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Shardingsphere Apache Software Foundation Shardingsphere-agent

Timeline

PublishedJul 19

Description

Deserialization of Untrusted Data vulnerability in Apache ShardingSphere-Agent, which allows attackers to execute arbitrary code by constructing a special YAML configuration file. The attacker needs to have permission to modify the ShardingSphere Agent YAML configuration file on the target machine, and the target machine can access the URL with the arbitrary code JAR. An attacker can use SnakeYAML to deserialize java.net.URLClassLoader and make it load a JAR from a specified URL, and then deser…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages3 packages

▶CVEListV5apache_software_foundation/shardingsphere-agent5.3.2

▶NVDapache/shardingsphere< 5.4.0

▶Mavenorg.apache.shardingsphere:shardingsphere< 5.4.0

🔴Vulnerability Details

OSV

Apache ShardingSphere-Agent Deserialization of Untrusted Data vulnerability↗2023-07-19

▶

GHSA

Apache ShardingSphere-Agent Deserialization of Untrusted Data vulnerability↗2023-07-19

▶

CVEList

ShardingSphere-Agent: Deserialization vulnerability in ShardingSphere Agent↗2023-07-19

▶