PT-2018-11257 · Linaro · Lava

Published

2018-06-19

Updated

2018-08-10

CVE-2018-12564

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Linaro LAVA versions prior to 2018.5.post1

Description An issue was discovered that allows a user to forge an HTTP request, forcing the server to return any file readable by lavaserver and valid yaml, due to support for URLs in the submit page.

Recommendations For versions prior to 2018.5.post1, update to version 2018.5.post1 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files on the server to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2018-12564

DLA-1404-1

DSA-4234-1

Affected Products

Lava

PT-2018-11257 · Linaro · Lava

CVE-2018-12564

Weakness Enumeration

Related Identifiers

Affected Products

References · 9