PT-2021-14848 · Netflix+1 · Spring-Cloud-Netflix-Hystrix-Dashboard+1

Threedr3Am

Published

2021-11-19

Updated

2021-11-23

CVE-2021-22053

CVSS v3.1

7.6

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

Name of the Vulnerable Software and Affected Versions spring-cloud-netflix-hystrix-dashboard versions (affected versions not specified)

Description The issue affects applications that use both spring-cloud-netflix-hystrix-dashboard and spring-boot-starter-thymeleaf. It exposes a way to execute code submitted within the request URI path during the resolution of view templates. When a request is made at "/hystrix/monitor;[user-provided data]", the path elements following hystrix/monitor are being evaluated as SpringEL expressions, which can lead to code execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2021-22053

GHSA-GX3F-HQ7P-8FXV

Affected Products

Spring-Boot-Starter-Thymeleaf

Spring-Cloud-Netflix-Hystrix-Dashboard

PT-2021-14848 · Netflix+1 · Spring-Cloud-Netflix-Hystrix-Dashboard+1

CVE-2021-22053

Weakness Enumeration

Related Identifiers

Affected Products

References · 8