CVE-2019-18956

Name of the Vulnerable Software and Affected Versions Divisa Proxia Suite versions prior to 9.12.16 Divisa Proxia Suite version 9.11.19 Divisa Proxia Suite version 9.10.26 Divisa Proxia Suite version 9.9.8 Divisa Proxia Suite version 9.8.43 Divisa Proxia Suite version 9.7.10 Divisa Proxia Suite versions 10.0 prior to 10.0.32 Divisa Proxia Suite versions 10.1 prior to 10.1.5 SparkSpace versions 1.0 prior to 1.0.30 SparkSpace versions 1.1 prior to 1.1.2 SparkSpace versions 1.2 prior to 1.2.4 Proxia PHR versions 1.0 prior to 1.0.30 Proxia PHR versions 1.1 prior to 1.1.2

Description The issue allows remote code execution via untrusted Java deserialization. The proxia-error cookie is insecurely deserialized in every request, enabling an unauthenticated attacker to craft a serialized payload and execute arbitrary code via the prepareError function in the com.divisait.dv2ee.controller.MVCControllerServlet class of the dv2eemvc.jar component.

Recommendations For Divisa Proxia Suite versions prior to 9.12.16, update to version 9.12.16 or later. For Divisa Proxia Suite version 9.11.19, update to version 9.12.16 or later. For Divisa Proxia Suite version 9.10.26, update to version 9.12.16 or later. For Divisa Proxia Suite version 9.9.8, update to version 9.12.16 or later. For Divisa Proxia Suite version 9.8.43, update to version 9.12.16 or later. For Divisa Proxia Suite version 9.7.10, update to version 9.12.16 or later. For Divisa Proxia Suite versions 10.0 prior to 10.0.32, update to version 10.0.32 or later. For Divisa Proxia Suite versions 10.1 prior to 10.1.5, update to version 10.1.5 or later. For SparkSpace versions 1.0 prior to 1.0.30, update to version 1.0.30 or later. For SparkSpace versions 1.1 prior to 1.1.2, update to version 1.1.2 or later. For SparkSpace versions 1.2 prior to 1.2.4, update to version 1.2.4 or later. For Proxia PHR versions 1.0 prior to 1.0.30, update to version 1.0.30 or later. For Proxia PHR versions 1.1 prior to 1.1.2, update to version 1.1.2 or later. As a temporary workaround, consider disabling the prepareError function in the com.divisait.dv2ee.controller.MVCControllerServlet class until a patch is available.