Vulnerability-Lookup

CVE-2013-5855 (GCVE-0-2013-5855)

Vulnerability from cvelistv5 – Published: 2014-07-17 02:36 – Updated: 2024-08-06 17:22

Summary

Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) <h:outputText> tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.

Severity ?

No CVSS data available.

CWE

Assigner

oracle

References

URL

FKIE_CVE-2013-5855

Vulnerability from fkie_nvd - Published: 2014-07-17 05:10 - Updated: 2025-04-12 10:46

Severity ?

Summary

References

URL	Tags
secalert_us@oracle.com	http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/ba-p/6368011#.U8ccVPlXZHU
secalert_us@oracle.com	http://rhn.redhat.com/errata/RHSA-2015-0675.html
secalert_us@oracle.com	http://rhn.redhat.com/errata/RHSA-2015-0720.html
secalert_us@oracle.com	http://rhn.redhat.com/errata/RHSA-2015-0765.html
secalert_us@oracle.com	http://seclists.org/fulldisclosure/2014/Dec/23
secalert_us@oracle.com	http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
secalert_us@oracle.com	http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html	Vendor Advisory
secalert_us@oracle.com	http://www.securityfocus.com/archive/1/534161/100/0/threaded
secalert_us@oracle.com	http://www.securityfocus.com/bid/65600
secalert_us@oracle.com	http://www.vmware.com/security/advisories/VMSA-2014-0012.html
secalert_us@oracle.com	https://java.net/jira/browse/JAVASERVERFACES-3150
secalert_us@oracle.com	https://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-1258
af854a3a-2127-422b-91ae-364da2661108	http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/ba-p/6368011#.U8ccVPlXZHU
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2015-0675.html
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2015-0720.html
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2015-0765.html
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2014/Dec/23
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/534161/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/65600
af854a3a-2127-422b-91ae-364da2661108	http://www.vmware.com/security/advisories/VMSA-2014-0012.html
af854a3a-2127-422b-91ae-364da2661108	https://java.net/jira/browse/JAVASERVERFACES-3150
af854a3a-2127-422b-91ae-364da2661108	https://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-1258

Impacted products

Vendor	Product	Version
oracle	mojarra	2.1.0
oracle	mojarra	2.1.1
oracle	mojarra	2.1.2
oracle	mojarra	2.1.3
oracle	mojarra	2.1.4
oracle	mojarra	2.1.5
oracle	mojarra	2.1.6
oracle	mojarra	2.1.7
oracle	mojarra	2.1.8
oracle	mojarra	2.1.9
oracle	mojarra	2.1.10
oracle	mojarra	2.1.11
oracle	mojarra	2.1.12
oracle	mojarra	2.1.13
oracle	mojarra	2.1.14
oracle	mojarra	2.1.15
oracle	mojarra	2.1.16
oracle	mojarra	2.1.17
oracle	mojarra	2.1.18
oracle	mojarra	2.1.19
oracle	mojarra	2.1.20
oracle	mojarra	2.1.21
oracle	mojarra	2.1.22
oracle	mojarra	2.1.23
oracle	mojarra	2.1.24
oracle	mojarra	2.1.25
oracle	mojarra	2.1.26
oracle	mojarra	2.1.27
oracle	mojarra	2.2.0
oracle	mojarra	2.2.1
oracle	mojarra	2.2.2
oracle	mojarra	2.2.3
oracle	mojarra	2.2.4
oracle	mojarra	2.2.5

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8D545A6A-CA1E-40F4-AFEF-8A22F1963959",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "F9ED4467-18CC-4710-8343-0B5D3F1E0E8E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "2629C89A-14F7-4642-ABC7-17428751563B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C44BE8D-C99C-45B7-BE72-5B4587F11DD5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "2BE4C509-061C-49FF-99CA-848EF82F0FFA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "283ECF0D-ED11-4D5C-8995-E93785CD1886",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F8F944C-42A2-4E4D-AB97-3800FE7BA086",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4FC9BF2-44D9-4514-950D-84E75E27C9BA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "D1ADC8E6-C052-4A4E-B840-4DF68CEFE409",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "D2C62BDE-8BF2-4389-9511-BF8B54BF0E2E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "D3AB62D2-3836-43A9-8209-ECC01298DDF7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCC9D019-DE8F-4431-A79A-AD3507F993AA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "6E9DEC24-5347-4A2D-A705-74AEFFF0BB59",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "3865ED07-C221-4A83-8048-747A030E163F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "06463192-2C6E-4059-9D56-B3C7D56616A1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A02DAC-B2D0-4043-A9C5-0297D555B79E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "3308CD3A-7D58-4251-85E4-AE16552CA850",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "6460D8F1-762C-4703-B32F-2D3AF3075609",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F53DF75-0B83-4260-9F1C-9131FDAEC751",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "B2E4A67F-0E82-4C15-8A07-5FA58EA6C43E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "56A24C0C-13B2-4E8F-8677-B43D0E81459F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.21:*:*:*:*:*:*:*",
              "matchCriteriaId": "656F4F63-5818-45DB-B616-3A82627CBE0C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "AA2C9A44-4977-4D8F-8713-4B8CD08C9C0C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.23:*:*:*:*:*:*:*",
              "matchCriteriaId": "970027E5-EC84-4C9F-BB48-0EEDF9C84A1C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.24:*:*:*:*:*:*:*",
              "matchCriteriaId": "B78471D0-5C90-479F-9318-ACF4CC0CF44B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.25:*:*:*:*:*:*:*",
              "matchCriteriaId": "88338F11-4E7D-451D-A265-0EFED5230CCF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.26:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5BC2BE1-4500-4ABA-A9BF-E84D433C9644",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.1.27:*:*:*:*:*:*:*",
              "matchCriteriaId": "7DF0069D-EA77-476A-8D74-77D29221391C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D53E07D9-826D-4CCB-BFD0-345F3AB669C3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A506B90E-C4BE-4A16-901E-5D21AAE4FFD2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "945AF3FF-57F8-434C-8B2C-753E9E791A0D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "9AC60987-2D5B-44A6-BB4B-4E34B095C4C7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC5653BF-E8E4-4844-BFBD-9275DF072173",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mojarra:2.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CD86AF0-3DA1-4A1C-BFAC-1A0ED1B76CDB",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) \u003ch:outputText\u003e tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors."
    },
    {
      "lang": "es",
      "value": "Oracle Mojarra 2.2.x anterior a 2.2.6 y 2.1.x anterior a 2.1.28 no realiza la codificaci\u00f3n debida cuando se utilice (1) una etiqueta  o (2) una expresi\u00f3n EL despu\u00e9s de un bloque del estilo scriptor, lo que permite a atacantes remotos realizar ataques de XSS a trav\u00e9s de vectores espec\u00edficos de una aplicaci\u00f3n."
    }
  ],
  "id": "CVE-2013-5855",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2014-07-17T05:10:13.937",
  "references": [
    {
      "source": "secalert_us@oracle.com",
      "url": "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/ba-p/6368011#.U8ccVPlXZHU"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0720.html"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0765.html"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://seclists.org/fulldisclosure/2014/Dec/23"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html"
    },
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.securityfocus.com/bid/65600"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "https://java.net/jira/browse/JAVASERVERFACES-3150"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "https://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-1258"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/ba-p/6368011#.U8ccVPlXZHU"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0720.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0765.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://seclists.org/fulldisclosure/2014/Dec/23"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/65600"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://java.net/jira/browse/JAVASERVERFACES-3150"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-1258"
    }
  ],
  "sourceIdentifier": "secalert_us@oracle.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2013-5855

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2013-5855

Aliases

CVE-2013-5855

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2013-5855",
    "description": "Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) \u003ch:outputText\u003e tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.",
    "id": "GSD-2013-5855",
    "references": [
      "https://access.redhat.com/errata/RHSA-2015:1009",
      "https://access.redhat.com/errata/RHSA-2015:0765",
      "https://access.redhat.com/errata/RHSA-2015:0720",
      "https://access.redhat.com/errata/RHSA-2015:0675",
      "https://access.redhat.com/errata/RHSA-2015:0235",
      "https://access.redhat.com/errata/RHSA-2015:0234",
      "https://access.redhat.com/errata/RHSA-2014:0910",
      "https://access.redhat.com/errata/RHSA-2014:0896"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2013-5855"
      ],
      "details": "Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) \u003ch:outputText\u003e tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.",
      "id": "GSD-2013-5855",
      "modified": "2023-12-13T01:22:21.935604Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert_us@oracle.com",
        "ID": "CVE-2013-5855",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) \u003ch:outputText\u003e tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "RHSA-2015:0765",
            "refsource": "REDHAT",
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0765.html"
          },
          {
            "name": "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/ba-p/6368011#.U8ccVPlXZHU",
            "refsource": "MISC",
            "url": "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/ba-p/6368011#.U8ccVPlXZHU"
          },
          {
            "name": "RHSA-2015:0675",
            "refsource": "REDHAT",
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html"
          },
          {
            "name": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html",
            "refsource": "CONFIRM",
            "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"
          },
          {
            "name": "RHSA-2015:0720",
            "refsource": "REDHAT",
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0720.html"
          },
          {
            "name": "65600",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/65600"
          },
          {
            "name": "https://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-1258",
            "refsource": "CONFIRM",
            "url": "https://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-1258"
          },
          {
            "name": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html",
            "refsource": "CONFIRM",
            "url": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html"
          },
          {
            "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"
          },
          {
            "name": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html",
            "refsource": "CONFIRM",
            "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"
          },
          {
            "name": "https://java.net/jira/browse/JAVASERVERFACES-3150",
            "refsource": "CONFIRM",
            "url": "https://java.net/jira/browse/JAVASERVERFACES-3150"
          },
          {
            "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities",
            "refsource": "FULLDISC",
            "url": "http://seclists.org/fulldisclosure/2014/Dec/23"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "[2-alpha0,2.2.5]",
          "affected_versions": "All versions starting from 2-alpha0 up to 2.2.5",
          "cvss_v2": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-79",
            "CWE-937"
          ],
          "date": "2018-10-09",
          "description": "This package does not perform appropriate encoding when a `\u003ch:outputText\u003e` tag or EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.",
          "fixed_versions": [
            "2.2.6"
          ],
          "identifier": "CVE-2013-5855",
          "identifiers": [
            "CVE-2013-5855"
          ],
          "not_impacted": "All versions before 2-alpha0, all versions after 2.2.5",
          "package_slug": "maven/com.sun.faces/jsf-impl",
          "pubdate": "2014-07-17",
          "solution": "Upgrade to version 2.2.6 or above.",
          "title": "XSS due to insufficient escaping of user-supplied content in outputText tags and EL expressions",
          "urls": [
            "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/bc-p/6370209",
            "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-5855",
            "https://java.net/jira/browse/JAVASERVERFACES-3150"
          ],
          "uuid": "44e50cf5-912f-4811-a63f-eac01e29318d"
        },
        {
          "affected_range": "[1.2_03,2.0.0)",
          "affected_versions": "All versions starting from 1.2_03 before 2.0.0",
          "cvss_v2": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-79",
            "CWE-937"
          ],
          "date": "2018-10-09",
          "description": "When a (1) `\u003ch:outputText\u003e` tag or (2) EL expression is used after a scriptor style block, attackers could conduct cross-site scripting (XSS) attacks via application-specific vectors.",
          "fixed_versions": [
            "2.0.0"
          ],
          "identifier": "CVE-2013-5855",
          "identifiers": [
            "CVE-2013-5855"
          ],
          "not_impacted": "Upgrade to version 2.0.0 or above.",
          "package_slug": "maven/javax.faces/jsf-impl",
          "pubdate": "2014-07-17",
          "solution": "Unfortunately, there is no solution available yet.",
          "title": "Cross-site Scripting",
          "urls": [
            "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-5855",
            "https://java.net/jira/browse/JAVASERVERFACES-3150",
            "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/bc-p/6370209"
          ],
          "uuid": "3ff0f4c5-fc91-4374-ab42-82ea0f6f773c"
        },
        {
          "affected_range": "[2-alpha0,2.2.5]",
          "affected_versions": "All versions starting from 2-alpha0 up to 2.2.5",
          "cvss_v2": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-79",
            "CWE-937"
          ],
          "date": "2018-10-09",
          "description": "This package does not perform appropriate encoding when a `\u003ch:outputText\u003e` tag or EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.",
          "fixed_versions": [
            "2.2.6"
          ],
          "identifier": "CVE-2013-5855",
          "identifiers": [
            "CVE-2013-5855"
          ],
          "not_impacted": "All versions before 2-alpha0, all versions after 2.2.5",
          "package_slug": "maven/org.glassfish/javax.faces",
          "pubdate": "2014-07-17",
          "solution": "Upgrade to version 2.2.6 or above.",
          "title": "XSS due to insufficient escaping of user-supplied content in outputText tags and EL expressions",
          "urls": [
            "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/bc-p/6370209",
            "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-5855",
            "https://java.net/jira/browse/JAVASERVERFACES-3150"
          ],
          "uuid": "ea3eb08e-ce49-4229-b1d1-6a9bd631fb2f"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.2.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.26:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.24:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.16:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.2.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.21:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.20:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.12:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.2.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.23:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.22:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.14:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.27:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.25:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.19:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.18:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:mojarra:2.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert_us@oracle.com",
          "ID": "CVE-2013-5855"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) \u003ch:outputText\u003e tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-79"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"
            },
            {
              "name": "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/ba-p/6368011#.U8ccVPlXZHU",
              "refsource": "MISC",
              "tags": [],
              "url": "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/ba-p/6368011#.U8ccVPlXZHU"
            },
            {
              "name": "https://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-1258",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-1258"
            },
            {
              "name": "https://java.net/jira/browse/JAVASERVERFACES-3150",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://java.net/jira/browse/JAVASERVERFACES-3150"
            },
            {
              "name": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"
            },
            {
              "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities",
              "refsource": "FULLDISC",
              "tags": [],
              "url": "http://seclists.org/fulldisclosure/2014/Dec/23"
            },
            {
              "name": "RHSA-2015:0675",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html"
            },
            {
              "name": "RHSA-2015:0720",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0720.html"
            },
            {
              "name": "RHSA-2015:0765",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0765.html"
            },
            {
              "name": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html"
            },
            {
              "name": "65600",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/65600"
            },
            {
              "name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2018-10-09T19:34Z",
      "publishedDate": "2014-07-17T05:10Z"
    }
  }
}

GHSA-3M3R-82GC-53MJ

Vulnerability from github – Published: 2022-05-14 02:54 – Updated: 2022-07-07 23:30

Summary

Improper Neutralization of Input During Web Page Generation in Mojarra

Details

Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Maven",
        "name": "org.glassfish:javax.faces"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.2.0"
            },
            {
              "fixed": "2.2.6"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Maven",
        "name": "org.glassfish:javax.faces"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.1.0"
            },
            {
              "fixed": "2.1.28"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2013-5855"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2022-07-07T23:30:20Z",
    "nvd_published_at": "2014-07-17T05:10:00Z",
    "severity": "MODERATE"
  },
  "details": "Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) \u003ch:outputText\u003e tag or (2) EL expression is used after a scriptor style block, which allows remote attackers to conduct cross-site scripting (XSS) attacks via application-specific vectors.",
  "id": "GHSA-3m3r-82gc-53mj",
  "modified": "2022-07-07T23:30:20Z",
  "published": "2022-05-14T02:54:24Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5855"
    },
    {
      "type": "WEB",
      "url": "https://java.net/jira/browse/JAVASERVERFACES-3150"
    },
    {
      "type": "WEB",
      "url": "https://java.net/jira/browse/JAVASERVERFACES_SPEC_PUBLIC-1258"
    },
    {
      "type": "WEB",
      "url": "http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/JSF-outputText-tag-the-good-the-bad-and-the-ugly/ba-p/6368011#.U8ccVPlXZHU"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0720.html"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0765.html"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2014/Dec/23"
    },
    {
      "type": "WEB",
      "url": "http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html"
    },
    {
      "type": "WEB",
      "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"
    },
    {
      "type": "WEB",
      "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [],
  "summary": "Improper Neutralization of Input During Web Page Generation in Mojarra"
}

CERTFR-2014-AVI-313

Vulnerability from certfr_avis - Published: 2014-07-16 - Updated: 2014-07-16

De multiples vulnérabilités ont été corrigées dans Oracle Fusion Middleware. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Oracle	N/A	Oracle Hyperion Common Admin, versions 11.1.2.2, 11.1.2.3
Oracle	N/A	Oracle Fusion Applications, versions 11.1.2 à 11.1.8
Oracle	N/A	Oracle iPlanet Web Proxy Server, version 4.0.24
Oracle	N/A	Oracle Hyperion Enterprise Performance Management Architect, versions 11.1.2.2, 11.1.2.3
Oracle	N/A	Oracle Hyperion Analytic Provider Services, versions 11.1.2.2, 11.1.2.3
Oracle	N/A	Oracle HTTP Server, versions 11.1.1.7.0, 12.1.2.0
Oracle	N/A	Oracle BI Publisher, version 11.1.1.7
Oracle	N/A	Oracle Glassfish Communications Server, version 2.0
Oracle	N/A	Oracle Glassfish Server, versions 2.1.1, 3.0.1, 3.1.2
Oracle	N/A	Oracle Traffic Director, version 11.1.1.7.0
Oracle	N/A	Oracle Fusion Middleware 12c Release 1, version 12.1.2.0
Oracle	N/A	Oracle Fusion Middleware 11g Release 1, version 11.1.1.7
Oracle	N/A	Oracle iPlanet Web Server, versions 6.1, 7.0
Oracle	N/A	Oracle JDeveloper, versions 11.1.1.7.0, 11.1.2.4.0, 12.1.2.0.0
Oracle	N/A	Oracle Hyperion BI+, versions 11.1.2.2, 11.1.2.3
Oracle	N/A	Oracle WebLogic Server, versions 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0
Oracle	N/A	Oracle WebCenter Portal, versions 11.1.1.7.0, 11.1.1.8.0
Oracle	N/A	Oracle Hyperion Essbase, versions 11.1.2.2, 11.1.2.3

References

Title

Publication Time

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2013-5855 (GCVE-0-2013-5855)

FKIE_CVE-2013-5855

GSD-2013-5855

GHSA-3M3R-82GC-53MJ

CERTFR-2014-AVI-313

Solution

Tags

Sightings

Nomenclature