CVE-2019-18956
17.12.2019, 16:15
Divisa Proxia Suite 9 < 9.12.16, 9.11.19, 9.10.26, 9.9.8, 9.8.43 and 9.7.10, 10.0 < 10.0.32, and 10.1 < 10.1.5, SparkSpace 1.0 < 1.0.30, 1.1 < 1.1.2, and 1.2 < 1.2.4, and Proxia PHR 1.0 < 1.0.30 and 1.1 < 1.1.2 allows remote code execution via untrusted Java deserialization. The proxia-error cookie is insecurely deserialized in every request (GET or POST). Thus, an unauthenticated attacker can easily craft a seria1.0lized payload in order to execute arbitrary code via the prepareError function in the com.divisait.dv2ee.controller.MVCControllerServlet class of the dv2eemvc.jar component. allows remote code execution via untrusted Java deserialization. The proxia-error cookie is insecurely deserialized in every request (GET or POST). Thus, an unauthenticated attacker can easily craft a serialized payload in order to execute arbitrary code via the prepareError function in the com.divisait.dv2ee.controller.MVCControllerServlet class of the dv2eemvc.jar component. Affected products include Proxia Premium Edition 2017 and Sparkspace.Enginsight
| Vendor | Product | Version |
|---|---|---|
| divisait | dv2eemvc | 17-62 ≤ 𝑥 ≤ 17-147 |
| divisait | dv2eemvc | 18.6 ≤ 𝑥 < 18.6.42 |
| divisait | dv2eemvc | 19.0 ≤ 𝑥 < 19.0.13 |
| divisait | dv2eemvc | 19.1 ≤ 𝑥 < 19.1.19 |
| divisait | dv2eemvc | 19.2 ≤ 𝑥 < 19.2.41 |
| divisait | dv2eemvc | 19.3 ≤ 𝑥 < 19.3.37 |
| divisait | dv2eemvc | 19.4 ≤ 𝑥 < 19.4.13 |
| divisait | dv2eemvc | 20.0 ≤ 𝑥 < 20.0.13 |
| divisait | proxia_phr | 1.0 ≤ 𝑥 < 1.0.30 |
| divisait | proxia_phr | 1.1 ≤ 𝑥 < 1.1.2 |
| divisait | proxia_suite | 9.0 ≤ 𝑥 < 9.12.16 |
| divisait | proxia_suite | 10.0 ≤ 𝑥 < 10.0.32 |
| divisait | proxia_suite | 10.1 ≤ 𝑥 < 10.1.5 |
| divisait | sparkspace | 1.0 ≤ 𝑥 < 1.0.30 |
| divisait | sparkspace | 1.1 ≤ 𝑥 < 1.1.2 |
| divisait | sparkspace | 1.2 ≤ 𝑥 < 1.2.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration