CVE-2013-4521

RichFaces implementation in Nuxeo Platform 5.6.0 before HF27 and 5.8.0 before HF-01 does not restrict the classes for which deserialization methods can be called, which allows remote attackers to execute arbitrary code via crafted serialized data. NOTE: this vulnerability may overlap CVE-2013-2165.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 84%
VendorProductVersion
nuxeonuxeo
5.6.0
nuxeonuxeo
5.6.0:hotfix01
nuxeonuxeo
5.6.0:hotfix02
nuxeonuxeo
5.6.0:hotfix03
nuxeonuxeo
5.6.0:hotfix04
nuxeonuxeo
5.6.0:hotfix05
nuxeonuxeo
5.6.0:hotfix06
nuxeonuxeo
5.6.0:hotfix07
nuxeonuxeo
5.6.0:hotfix08
nuxeonuxeo
5.6.0:hotfix09
nuxeonuxeo
5.6.0:hotfix10
nuxeonuxeo
5.6.0:hotfix11
nuxeonuxeo
5.6.0:hotfix12
nuxeonuxeo
5.6.0:hotfix13
nuxeonuxeo
5.6.0:hotfix14
nuxeonuxeo
5.6.0:hotfix15
nuxeonuxeo
5.6.0:hotfix16
nuxeonuxeo
5.6.0:hotfix17
nuxeonuxeo
5.6.0:hotfix18
nuxeonuxeo
5.6.0:hotfix19
nuxeonuxeo
5.6.0:hotfix20
nuxeonuxeo
5.6.0:hotfix21
nuxeonuxeo
5.6.0:hotfix22
nuxeonuxeo
5.6.0:hotfix23
nuxeonuxeo
5.6.0:hotfix24
nuxeonuxeo
5.6.0:hotfix25
nuxeonuxeo
5.6.0:hotfix26
nuxeonuxeo
5.8.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://doc.nuxeo.com/display/public/ADMINDOC58/Nuxeo+Security+Hotfixes
https://bugzilla.redhat.com/show_bug.cgi?id=1027052
https://github.com/nuxeo/richfaces/commit/6cbad2a6dcb70d3e33a6ce5879b1a3ad79eb1aec
http://doc.nuxeo.com/display/public/ADMINDOC58/Nuxeo+Security+Hotfixes
https://bugzilla.redhat.com/show_bug.cgi?id=1027052
https://github.com/nuxeo/richfaces/commit/6cbad2a6dcb70d3e33a6ce5879b1a3ad79eb1aec