CVE-2020-4643 | WebSphere Application Server XXEÎó²îͨ¸æ

Ðû²¼Ê±¼ä 2020-09-22

0x00 Îó²î¸ÅÊö

CVE   ID

CVE-2020-4643

ʱ    ¼ä

2020-09-22

Àà    ÐÍ

XXE

µÈ    ¼¶

¸ßΣ

Ô¶³ÌʹÓÃ

ÊÇ

Ó°Ïì¹æÄ£

WebSphereÓ¦ÓÃЧÀÍÆ÷£º

7.0¡¢8.0¡¢8.5¡¢9.0

 

IBM WebSphere Application ServerÊÇÒ»ÖÖ¸ßÐÔÄܵÄJavaÓ¦ÓÃЧÀÍÆ÷£¬£¬ £¬£¬£¬£¬£¬¿ÉÓÃÓÚ¹¹½¨¡¢ÔËÐС¢¼¯³É¡¢±£»£» £»¤ºÍÖÎÀíÄÚ²¿°²ÅźÍÍⲿ°²ÅŵĶ¯Ì¬ÔƺÍWebÓ¦Óᣡ£¡£ ¡£Ëü²»µ«Äܹ»È·±£¸ßÐÔÄܺÍÎÞаÐÔ£¬£¬ £¬£¬£¬£¬£¬»¹Ìṩ¶àÖÖ¿ª·Å±ê×¼±à³ÌÄ£×ÓÑ¡Ï£¬ £¬£¬£¬£¬£¬Ö¼ÔÚ×îºéÁ÷ƽÌá¸ß¿ª·¢Ö°Ô±µÄÉú²úÁ¦¡£¡£¡£ ¡£Ëü¿ÉÌṩÎÞаÏȽøµÄÐÔÄÜ¡¢ÈßÓàºÍ±à³ÌÄ£×Ó¡£¡£¡£ ¡£

0x01 Îó²îÏêÇé

 

image.png 

 

2020Äê09ÔÂ17ÈÕ£¬£¬ £¬£¬£¬£¬£¬IBMÐû²¼Ç徲ͨ¸æ£¬£¬ £¬£¬£¬£¬£¬WebSphere Application ServerÖб£´æÒ»¸öÇå¾²Îó²î¡£¡£¡£ ¡£Îó²î×·×ÙΪCVE-2020-4643£¬£¬ £¬£¬£¬£¬£¬ÆäCVSSÆÀ·ÖΪ7.5¡£¡£¡£ ¡£¸ÃÎó²îÊÇÓÉÓÚWebSphere Application ServerÔÚ´¦Öóͷ£XMLÊý¾ÝʱÈÝÒ×Êܵ½XMLÍⲿʵÌå×¢È루XXE£©¹¥»÷¡£¡£¡£ ¡£Ô¶³Ì¹¥»÷Õß¿ÉÒÔʹÓôËÎó²îÀ´ÇÔÈ¡Ãô¸ÐÐÅÏ¢£¬£¬ £¬£¬£¬£¬£¬Î£º¦½Ï´ó¡£¡£¡£ ¡£

0x02 ´¦Öóͷ£½¨Òé

ÏÖÔÚIBM¹Ù·½ÒÑÐû²¼Çå¾²¸üУ¬£¬ £¬£¬£¬£¬£¬½¨Òé²ÎÕÕ¹Ù·½ÔÝʱÐÞ¶©½«WebSphere Application ServerºÍWebSphere Application Server Hypervisor EditionÉý¼¶µ½Çå¾²°æ±¾£º

7.0.0.45-WS-WAS-IFPH27509£¨ÊÊÓÃÓÚ7.0.0.45°æ±¾£©ÔÝʱ²¹¶¡ÏÂÔصص㣺

https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=7.0.0.45-WS-WAS-IFPH27509&includeSupersedes=0

8.0.0.15-WS-WASEmbeded-IFPH27509£¨ÊÊÓÃÓÚ8.0.0.15°æ±¾£©ÔÝʱ²¹¶¡ÏÂÔصص㣺

https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=8.0.0.15-WS-WASEmbeded-IFPH27509&includeSupersedes=0

8.0.0.15-WS-WASProd-IFPH27509£¨ÊÊÓÃÓÚ8.0.0.15°æ±¾£©ÔÝʱ²¹¶¡ÏÂÔصص㣺

https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=8.0.0.15-WS-WASProd-IFPH27509&includeSupersedes=0

8.5.5.15-WS-WASProd-IFPH27509£¨ÊÊÓÃÓÚ8.5.5.15, 8.5.5.16, 8.5.5.17°æ±¾£©ÔÝʱ²¹¶¡ÏÂÔصص㣺

https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=8.5.5.15-WS-WASProd-IFPH27509&includeSupersedes=0

9.0.5.2-WS-WASProd-IFPH27509£¨ÊÊÓÃÓÚ9.0.5.2¡¢9.0.5.3¡¢9.0.5.4¡¢9.0.5.5°æ±¾£©ÔÝʱ²¹¶¡ÏÂÔصص㣺

https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=9.0.5.2-WS-WASProd-IFPH27509&includeSupersedes=0

¸ü¶àÏêϸÐÅÏ¢Çë²Î¿¼PH27509ÔÝʱÐÞ¶©£º

https://www.ibm.com/support/pages/node/6333617

0x03 Ïà¹ØÐÂÎÅ

https://www.kengilmour.com/na-cve-2020-4643-ibm-websphere-application-server-7-0-8-0-8-5/

0x04 ²Î¿¼Á´½Ó

https://www.ibm.com/support/pages/node/6334311

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4643

https://www.security-database.com/detail.php?alert=CVE-2020-4643

https://exchange.xforce.ibmcloud.com/vulnerabilities/185590

0x05 ʱ¼äÏß

2020-09-17    IBMÐû²¼Ç徲ͨ¸æ

2020-09-22    VSRCÐû²¼Ç徲ͨ¸æ

 

 

 

image.png