{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-7312", "assignerOrgId": "769c9ae7-73c3-4e47-ae19-903170fc3eb8", "state": "PUBLISHED", "assignerShortName": "Payara", "dateReserved": "2024-07-30T20:07:31.604Z", "datePublished": "2024-09-11T15:28:43.452Z", "dateUpdated": "2024-09-11T19:32:42.844Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["REST Management Interface"], "product": "Payara Server", "vendor": "Payara Platform", "versions": [{"lessThan": "6.18.0", "status": "affected", "version": "6.0.0", "versionType": "semver"}, {"lessThan": "6.2024.9", "status": "affected", "version": "6.2022.1", "versionType": "semver"}, {"lessThan": "5.2022.5", "status": "affected", "version": "5.2020.2", "versionType": "semver"}, {"lessThan": "5.67.0", "status": "affected", "version": "5.20.0", "versionType": "semver"}, {"lessThan": "4.1.2.191.50", "status": "affected", "version": "4.1.2.191.0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "reporter", "value": "Marco Ventura"}, {"lang": "en", "type": "reporter", "value": "Claudia Bartolini"}, {"lang": "en", "type": "reporter", "value": "Andrea Carlo Maria Dattola"}, {"lang": "en", "type": "reporter", "value": "Debora Esposito"}, {"lang": "en", "type": "reporter", "value": "Massimiliano Brolli"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.<p>This issue affects Payara Server: from 6.0.0 before 6.18.0, from 6.2022.1 before 6.2024.9, from 5.2020.2 before 5.2022.5, from 5.20.0 before 5.67.0, from 4.1.2.191.0 before 4.1.2.191.50.</p>"}], "value": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.This issue affects Payara Server: from 6.0.0 before 6.18.0, from 6.2022.1 before 6.2024.9, from 5.2020.2 before 5.2022.5, from 5.20.0 before 5.67.0, from 4.1.2.191.0 before 4.1.2.191.50."}], "impacts": [{"capecId": "CAPEC-593", "descriptions": [{"lang": "en", "value": "CAPEC-593 Session Hijacking"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "HIGH", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 7, "baseSeverity": "HIGH", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "HIGH", "userInteraction": "ACTIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:A/VC:H/VI:H/VA:H/SC:N/SI:H/SA:H", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-601", "description": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "769c9ae7-73c3-4e47-ae19-903170fc3eb8", "shortName": "Payara", "dateUpdated": "2024-09-11T19:32:42.844Z"}, "references": [{"tags": ["release-notes"], "url": "https://docs.payara.fish/enterprise/docs/5.67.0/Release%20Notes/Release%20Notes%205.67.0.html"}, {"tags": ["release-notes"], "url": "https://docs.payara.fish/enterprise/docs/Release%20Notes/Release%20Notes%206.18.0.html"}], "source": {"discovery": "UPSTREAM"}, "title": "REST Interface Link Redirection via Host parameter", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"affected": [{"vendor": "payara", "product": "payara", "cpes": ["cpe:2.3:a:payara:payara:*:*:*:*:enterprise:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "6.0.0", "status": "affected", "lessThan": "6.18.0", "versionType": "semver"}, {"version": "6.2022.1", "status": "affected", "lessThan": "6.2024.6", "versionType": "semver"}, {"version": "5.2020.2", "status": "affected", "lessThan": "5.2022.5", "versionType": "semver"}, {"version": "4.1.2.191.0", "status": "affected", "lessThan": "4.1.2.191.50", "versionType": "semver"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-11T18:12:12.528111Z", "id": "CVE-2024-7312", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T18:15:38.837Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-7312", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-09-11T18:12:12.528111Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:payara:payara:*:*:*:*:enterprise:*:*:*"], "vendor": "payara", "product": "payara", "versions": [{"status": "affected", "version": "6.0.0", "lessThan": "6.18.0", "versionType": "semver"}, {"status": "affected", "version": "6.2022.1", "lessThan": "6.2024.6", "versionType": "semver"}, {"status": "affected", "version": "5.2020.2", "lessThan": "5.2022.5", "versionType": "semver"}, {"status": "affected", "version": "4.1.2.191.0", "lessThan": "4.1.2.191.50", "versionType": "semver"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T18:15:23.128Z"}}], "cna": {"title": "REST Interface Link Redirection via Host parameter", "source": {"discovery": "UPSTREAM"}, "credits": [{"lang": "en", "type": "reporter", "value": "Marco Ventura"}, {"lang": "en", "type": "reporter", "value": "Claudia Bartolini"}, {"lang": "en", "type": "reporter", "value": "Andrea Carlo Maria Dattola"}, {"lang": "en", "type": "reporter", "value": "Debora Esposito"}, {"lang": "en", "type": "reporter", "value": "Massimiliano Brolli"}], "impacts": [{"capecId": "CAPEC-593", "descriptions": [{"lang": "en", "value": "CAPEC-593 Session Hijacking"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 7, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:A/VC:H/VI:H/VA:H/SC:N/SI:H/SA:H", "providerUrgency": "NOT_DEFINED", "userInteraction": "ACTIVE", "attackComplexity": "HIGH", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "subIntegrityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Payara Platform", "modules": ["REST Management Interface"], "product": "Payara Server", "versions": [{"status": "affected", "version": "6.0.0", "lessThan": "6.18.0", "versionType": "semver"}, {"status": "affected", "version": "6.2022.1", "lessThan": "6.2024.9", "versionType": "semver"}, {"status": "affected", "version": "5.2020.2", "lessThan": "5.2022.5", "versionType": "semver"}, {"status": "affected", "version": "5.20.0", "lessThan": "5.67.0", "versionType": "semver"}, {"status": "affected", "version": "4.1.2.191.0", "lessThan": "4.1.2.191.50", "versionType": "custom"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://docs.payara.fish/enterprise/docs/5.67.0/Release%20Notes/Release%20Notes%205.67.0.html", "tags": ["release-notes"]}, {"url": "https://docs.payara.fish/enterprise/docs/Release%20Notes/Release%20Notes%206.18.0.html", "tags": ["release-notes"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.This issue affects Payara Server: from 6.0.0 before 6.18.0, from 6.2022.1 before 6.2024.9, from 5.2020.2 before 5.2022.5, from 5.20.0 before 5.67.0, from 4.1.2.191.0 before 4.1.2.191.50.", "supportingMedia": [{"type": "text/html", "value": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.<p>This issue affects Payara Server: from 6.0.0 before 6.18.0, from 6.2022.1 before 6.2024.9, from 5.2020.2 before 5.2022.5, from 5.20.0 before 5.67.0, from 4.1.2.191.0 before 4.1.2.191.50.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-601", "description": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')"}]}], "providerMetadata": {"orgId": "769c9ae7-73c3-4e47-ae19-903170fc3eb8", "shortName": "Payara", "dateUpdated": "2024-09-11T19:32:42.844Z"}}}, "cveMetadata": {"cveId": "CVE-2024-7312", "state": "PUBLISHED", "dateUpdated": "2024-09-11T19:32:42.844Z", "dateReserved": "2024-07-30T20:07:31.604Z", "assignerOrgId": "769c9ae7-73c3-4e47-ae19-903170fc3eb8", "datePublished": "2024-09-11T15:28:43.452Z", "assignerShortName": "Payara"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:payara:payara:*:*:*:*:community:*:*:*", "matchCriteriaId": "2CB09C88-3E34-43D4-AD55-73821A0F462E", "versionEndExcluding": "4.1.2.191.50", "versionStartIncluding": "4.1.2.191.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:payara:payara:*:*:*:*:enterprise:*:*:*", "matchCriteriaId": "34A634E3-24B0-4E29-8B62-8E6F6A68D0AA", "versionEndExcluding": "5.67.0", "versionStartIncluding": "5.20.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:payara:payara:*:*:*:*:community:*:*:*", "matchCriteriaId": "E0E17F5A-30D2-407F-8570-8B82509B9055", "versionEndExcluding": "5.2022.5", "versionStartIncluding": "5.2020.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:payara:payara:*:*:*:*:enterprise:*:*:*", "matchCriteriaId": "EF14AD8C-DBCC-4739-9058-9AF97D71323E", "versionEndExcluding": "6.18.0", "versionStartIncluding": "6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:payara:payara:*:*:*:*:community:*:*:*", "matchCriteriaId": "2A479A71-9114-46E4-BFA3-BB7FD36FA56A", "versionEndExcluding": "6.2024.9", "versionStartIncluding": "6.2022.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.This issue affects Payara Server: from 6.0.0 before 6.18.0, from 6.2022.1 before 6.2024.9, from 5.2020.2 before 5.2022.5, from 5.20.0 before 5.67.0, from 4.1.2.191.0 before 4.1.2.191.50."}, {"lang": "es", "value": "Vulnerabilidad de redirecci\u00f3n de URL a un sitio no confiable ('Redirecci\u00f3n abierta') en Payara Platform Payara Server (m\u00f3dulos de interfaz de administraci\u00f3n REST) permite el secuestro de sesi\u00f3n. Este problema afecta a Payara Server: desde 6.0.0 antes de 6.18.0, desde 6.2022.1 antes de 6.2024.9, desde 5.2020.2 antes de 5.2022.5, desde 5.20.0 antes de 5.67.0, desde 4.1.2.191.0 antes de 4.1.2.191.50."}], "id": "CVE-2024-7312", "lastModified": "2024-09-13T16:27:50.577", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"attackComplexity": "HIGH", "attackRequirements": "NONE", "attackVector": "LOCAL", "automatable": "NOT_DEFINED", "availabilityRequirements": "NOT_DEFINED", "baseScore": 7.0, "baseSeverity": "HIGH", "confidentialityRequirements": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirements": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubsequentSystemAvailability": "NOT_DEFINED", "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnerableSystemAvailability": "NOT_DEFINED", "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "recovery": "NOT_DEFINED", "safety": "NOT_DEFINED", "subsequentSystemAvailability": "HIGH", "subsequentSystemConfidentiality": "NONE", "subsequentSystemIntegrity": "HIGH", "userInteraction": "ACTIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:A/VC:H/VI:H/VA:H/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnerabilityResponseEffort": "NOT_DEFINED", "vulnerableSystemAvailability": "HIGH", "vulnerableSystemConfidentiality": "HIGH", "vulnerableSystemIntegrity": "HIGH"}, "source": "769c9ae7-73c3-4e47-ae19-903170fc3eb8", "type": "Secondary"}]}, "published": "2024-09-11T16:15:08.080", "references": [{"source": "769c9ae7-73c3-4e47-ae19-903170fc3eb8", "tags": ["Release Notes"], "url": "https://docs.payara.fish/enterprise/docs/5.67.0/Release%20Notes/Release%20Notes%205.67.0.html"}, {"source": "769c9ae7-73c3-4e47-ae19-903170fc3eb8", "tags": ["Release Notes"], "url": "https://docs.payara.fish/enterprise/docs/Release%20Notes/Release%20Notes%206.18.0.html"}], "sourceIdentifier": "769c9ae7-73c3-4e47-ae19-903170fc3eb8", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-601"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-601"}], "source": "769c9ae7-73c3-4e47-ae19-903170fc3eb8", "type": "Secondary"}]}

{"bugzilla": {"description": "payara: Open Redirect Vulnerability in Payara Server REST Management Interface", "id": "2311731", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311731"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.1", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "status": "draft"}, "cwe": "CWE-601", "details": ["URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.This issue affects Payara Server: from 6.0.0 before 6.18.0, from 6.2022.1 before 6.2024.9, from 5.2020.2 before 5.2022.5, from 5.20.0 before 5.67.0, from 4.1.2.191.0 before 4.1.2.191.50.", "A flaw was found in the Payara Server REST Management Interface modules. This vulnerability allows session hijacking via URL redirection to an untrusted site."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2024-7312", "package_state": [{"cpe": "cpe:/a:redhat:jboss_data_grid:7", "fix_state": "Not affected", "package_name": "fish.payara.arquillian/arquillian-payara-server-4-managed", "product_name": "Red Hat JBoss Data Grid 7"}], "public_date": "2024-09-11T16:15:08Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-7312\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-7312\nhttps://docs.payara.fish/enterprise/docs/Release%20Notes/Release%20Notes%205.67.0.html\nhttps://docs.payara.fish/enterprise/docs/Release%20Notes/Release%20Notes%206.18.0.html"], "statement": "The Open Redirect vulnerability in the Payara Server REST Management Interface modules is classified as a moderate severity issue due to its reliance on additional exploit scenarios and the need for user interaction. While the vulnerability can potentially lead to session hijacking or phishing attacks, its impact is contingent upon an attacker successfully tricking a user into visiting a malicious URL. This reliance on user action, coupled with the necessity of additional contextual exploitation, reduces the immediate risk compared to more direct vulnerabilities. Additionally, the server-side exposure is mitigated by the inherent security measures of the Payara Server and the requirement for valid session tokens or authentication credentials.", "threat_severity": "Moderate"}