{ "threat_severity" : "Important", "public_date" : "2019-07-31T13:41:00Z", "bugzilla" : { "description" : "icedtea-web: directory traversal in the nested jar auto-extraction leading to arbitrary file overwrite", "id" : "1724989", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1724989" }, "cvss3" : { "cvss3_base_score" : "8.2", "cvss3_scoring_vector" : "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:L", "status" : "verified" }, "cwe" : "CWE-22", "details" : [ "It was found that icedtea-web up to and including 1.7.2 and 1.8.2 was vulnerable to a zip-slip attack during auto-extraction of a JAR file. An attacker could use this flaw to write files to arbitrary locations. This could also be used to replace the main running application and, possibly, break out of the sandbox.", "It was found that icedtea-web was vulnerable to a zip-slip attack during auto-extraction of a JAR file. An attacker could use this flaw to write files to arbitrary locations. This could also be used to replace the main running application and, possibly, break out of the sandbox." ], "acknowledgement" : "Red Hat would like to thank Imre Rad for reporting this issue.", "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2019-07-31T00:00:00Z", "advisory" : "RHSA-2019:2003", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "icedtea-web-0:1.7.1-2.el7_6" }, { "product_name" : "Red Hat Enterprise Linux 8", "release_date" : "2019-07-31T00:00:00Z", "advisory" : "RHSA-2019:2004", "cpe" : "cpe:/a:redhat:enterprise_linux:8", "package" : "icedtea-web-0:1.7.1-17.el8_0" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 6", "fix_state" : "Out of support scope", "package_name" : "icedtea-web", "cpe" : "cpe:/o:redhat:enterprise_linux:6" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2019-10185\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-10185" ], "name" : "CVE-2019-10185", "mitigation" : { "value" : "No known mitigation.", "lang" : "en:us" }, "csaw" : false }