CVE-2020-17530 | Apache StrutsÔ¶³Ì´úÂëÖ´Ðзì϶¹«¸æ

°ä²¼¹¦·ò 2020-12-08


0x00 ·ì϶¸ÅÊö

CVE   ID

CVE-2020-17530

ʱ      ¼ä

2020-12-08

Àà     ÐÍ

RCE

µÈ      ¼¶

¸ßΣ

Ô¶³ÌÀûÓÃ

ÊÇ

Ó°ÏìÁìÓò

Apache struts £º

 2.0.0-2.5.25

 

0x01 ·ì϶ÏêÇé

 

image.png

 

Apache Struts 2 ÊÇÒ»¸öÓÃÓÚ¿ª·¢Java EEÍøÂçÀûÓ÷¨Ê½µÄ¿ªÔ´Web¿ò¼Ü£¬ÆäÀûÓò¢ÑÓ³¤ÁËJava Servlet API£¬¼¤Àø¿ª·¢ÕßÑ¡È¡MVC¼Ü¹¹ ¡£

2020Äê12ÔÂ08ÈÕ£¬ Apache °ä²¼°²È«²¼¸æ£¬StrutsÖдæÔÚÒ»¸öÔ¶³Ì´úÂëÖ´Ðзì϶£¨CVE-2020-17530£© ¡£

StrutsÔÚijЩÇé¿öÏ¿ÉÄÜ´æÔÚOGNL±í°×ʽעÈë·ì϶£¬ÈôÊÇ¿ª·¢ÈËԱʹÓÃÁË %{¡­} Óï·¨½øÐÐÇ¿ÔìOGNL½âÎö£¬Ä³Ð©ÌØÊâµÄTAGÊôÐÔ¿ÉÄܻᱻ˫³Á½âÎö ¡£¹¥»÷ÕßÄܹ»Í¨¹ý»ú¹Ø¶ñÒâµÄOGNL±í°×ʽÀ´ÀûÓô˷ì϶£¬×îÖÕÔì³ÉÔ¶³Ì´úÂëÖ´ÐÐ ¡£

 

0x02 ´ëÖý¨Òé

Ä¿Ç°ApacheÒѾ­½¨¸´ÁË´Ë·ì϶£¬½¨Òé¸üÐÂÖÁStruts 2.5.26»ò¸ü¸ß°æ±¾ ¡£

ÏÂÔØÁ´½Ó£º

https://cwiki.apache.org/confluence/display/WW/Version+Notes+2.5.26

 

0x03 ²Î¿¼Á´½Ó

https://cwiki.apache.org/confluence/display/WW/S2-061

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17530

https://nvd.nist.gov/vuln/detail/CVE-2020-17530

 

0x04 ¹¦·òÏß

2020-12-08  Apache°ä²¼°²È«²¼¸æ

2020-12-08  VSRC°ä²¼°²È«¹«¸æ

 

0x05 ¸½Â¼

 

CVSSÆÀ·Ö³ß¶È¹ÙÍø£ºhttp://www.first.org/cvss/


image.png