Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJqeDgtdjRodi1neDNo

High EPSS: 0.0028% (0.51017 Percentile) EPSS:
Permalink JSON

XXE vulnerability in Launch import

Affected Packages Affected Versions Fixed Versions
maven:com.epam.reportportal:service-api >= 5.0.0, < 5.1.1, >= 3.1.0, < 4.3.12 5.1.1, 4.3.12
0 Dependent packages
2 Dependent repositories

Affected Version Ranges

All affected versions

3.1.1, 3.2.0, 3.2.1, 3.3.2, 4.0.0, 4.1.1, 4.2.1, 4.3.10, 4.3.11, 5.0.0, 5.1.0

All unaffected versions

2.6.0, 2.7.2, 3.0.1, 4.3.12, 5.1.1, 5.2.0, 5.2.1, 5.2.2, 5.2.3, 5.3.0, 5.3.1, 5.3.2, 5.3.3, 5.3.4, 5.3.5, 5.7.0, 5.7.1, 5.7.2, 5.7.3, 5.7.4, 5.8.0, 5.11.0, 5.11.2, 5.12.0, 5.13.0, 5.13.2, 5.13.4, 5.13.5, 5.14.0
Release Date Affected Projects Affected Versions Access Vector Security Risk
Monday, May 4, 2020 service-api Every version, starting from 3.1.0 Remote Medium

Impact

Starting from version 3.1.0 we introduced a new feature of JUnit XML launch import. Unfortunately XML parser was not configured properly to prevent XML external entity (XXE) attacks. This allows a user to import a specifically-crafted XML file that uses external entities for extraction of secrets from Report Portal service-api module or server-side request forgery.

Report Portal versions 4.3.12+ and 5.1.1+ disables external entity resolution for theirs XML parser.

We advise our users install the latest releases we built specifically to address this issue.

Patches

Fixed with https://github.com/reportportal/service-api/pull/1201

Binary Download

https://bintray.com/epam/reportportal/service-api/5.1.1
https://bintray.com/epam/reportportal/service-api/4.3.12

Docker Container Download

  • RP v4: docker pull reportportal/service-api:4.3.12
  • RP v5: docker pull reportportal/service-api:5.1.1

Acknowledgement

The issue was reported to Report Portal Team by an external security researcher.
Our Team thanks Julien M. for reporting the issue.

For more information

If you have any questions or comments about this advisory email us: support@reportportal.io

References:

Identifiers

GHSA-2jx8-v4hv-gx3h

CVE-2020-12642

Risk

Severity

High

EPSS

EPSS Percentage: 0.0028

EPSS Percentile: 0.51017

Classification

General

Source

GitHub Advisory Database

Origin

Unspecified

Repository

https://github.com/reportportal/reportportal

Date and time

Published

over 4 years ago

Updated

16 days ago

API

JSON