低危 Eclipse Jetty创建具有不安全权限的临时文件漏洞

CVE编号

CVE-2020-27216

利用情况

暂无

补丁情况

官方补丁

披露时间

2020-10-24
漏洞描述
Eclipse Jetty是Eclipse基金会的一个开源的、基于Java的Web服务器和Java Servlet容器。 Eclipse Jetty 存在安全漏洞,该漏洞源于系统的临时目录在该系统上的所有用户之间共享。并置用户可以观察在共享临时目录中创建临时子目录的过程,并争着完成临时子目录的创建。攻击者可利用该漏洞拥有对用于解压缩web应用程序的子目录的读写权限,包括它们的web - inf lib jar文件和JSP文件。以下产品及版本收到影响:1.0 thru 9.4.32.v20200930版本, 10.0.0.alpha1 thru 10.0.0.beta2版本, 11.0.0.alpha1 thru 11.0.0.beta2O版本。

解决建议

目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://github.com/eclipse/jetty.project/security/advisories/GHSA-g3wg-6mcf-8jj6#advisory-comment-63053


参考链接
https://bugs.eclipse.org/bugs/show_bug.cgi?id=567921
https://github.com/eclipse/jetty.project/security/advisories/GHSA-g3wg-6mcf-8...
https://lists.apache.org/thread.html/r0259b14ae69b87821e27fed1f5333ea86018294...
https://lists.apache.org/thread.html/r07525dc424ed69b3919618599e762f9ac037914...
https://lists.apache.org/thread.html/r09b345099b4f88d2bed7f195a96145849243fb4...
https://lists.apache.org/thread.html/r0d7ad4f02c44d5d53a9ffcbca7ff4a813824132...
https://lists.apache.org/thread.html/r0d95e01f52667f44835c40f6dea72bb4397f33c...
https://lists.apache.org/thread.html/r0df8fe10fc36028cf6d0381ab66510917d0d68b...
https://lists.apache.org/thread.html/r0e9efe032cc65433251ee6470c66c334d4e7db9...
https://lists.apache.org/thread.html/r0f5e9b93133ef3aaf31484bc3e15cc4b85f8af0...
https://lists.apache.org/thread.html/r100c5c7586a23a19fdb54d8a32e17cd0944bdaa...
https://lists.apache.org/thread.html/r171846414347ec5fed38241a9f8a009bd2c89d9...
https://lists.apache.org/thread.html/r185d10aae8161c08726f3ba9a1f1c47dfb97624...
https://lists.apache.org/thread.html/r18b6f10d9939419bae9c225d5058c97533cb376...
https://lists.apache.org/thread.html/r19e8b338af511641d211ff45c43646fe1ae19dc...
https://lists.apache.org/thread.html/r1d40368a309f9d835dcdd900249966e4fcbdf98...
https://lists.apache.org/thread.html/r1d45051310b11c6d6476f20d71b08ea97cb7684...
https://lists.apache.org/thread.html/r1dbb87c9255ecefadd8de514fa1d35c1d493c05...
https://lists.apache.org/thread.html/r1ed79516bd6d248ea9f0e704dbfd7de740d5a75...
https://lists.apache.org/thread.html/r1ef28b89ff0281c87ba3a7659058789bf28a99b...
https://lists.apache.org/thread.html/r1fe31643fc34b4a33ae3d416d92c271aa97663f...
https://lists.apache.org/thread.html/r2122537d3f9beb0ce59f44371a951b226406719...
https://lists.apache.org/thread.html/r279254a1bd6434c943da52000476f307e62b691...
https://lists.apache.org/thread.html/r2aa316d008dab9ae48350b330d15dc1b863ea2a...
https://lists.apache.org/thread.html/r2d17b2a4803096ba427f3575599ea29b55f5cf9...
https://lists.apache.org/thread.html/r2e02700f7cfecb213de50be83e066086bea9027...
https://lists.apache.org/thread.html/r2f732ee49d00610683ab5ddb4692ab25136b00b...
https://lists.apache.org/thread.html/r3042a9dd2973aa229e52d022df7813e4d74b67d...
https://lists.apache.org/thread.html/r336b1694a01858111e4625fb9ab2b07ad43a64a...
https://lists.apache.org/thread.html/r351298dd39fc1ab63303be94b0c0d08acd72b17...
https://lists.apache.org/thread.html/r352e40ca9874d1beb4ad95403792adca7eb295e...
https://lists.apache.org/thread.html/r382870d6ccfd60533eb0d980688261723ed8a07...
https://lists.apache.org/thread.html/r3a763de620be72b6d74f46ec4bf39c9f35f8a0b...
https://lists.apache.org/thread.html/r3b0ce1549a1ccdd7e51ec66daf8d54d46f1571e...
https://lists.apache.org/thread.html/r3e05ab0922876e74fea975d70af82b98580f4c1...
https://lists.apache.org/thread.html/r3f32cb4965239399c22497a0aabb015b28b2372...
https://lists.apache.org/thread.html/r407c316f6113dfc76f7bb3cb1693f08274c5210...
https://lists.apache.org/thread.html/r4179c71908778cc0598ee8ee1eaed9b88fc5483...
https://lists.apache.org/thread.html/r44115ebfbf3b7d294d7a75f2d30bcc822dab186...
https://lists.apache.org/thread.html/r4946ffd86ad6eb7cb7863311235c914cb412323...
https://lists.apache.org/thread.html/r4f29fb24639ebc5d15fc477656ebc2b3aa00fcf...
https://lists.apache.org/thread.html/r503045a75f4419d083cb63ac89e765d6fb8b10c...
https://lists.apache.org/thread.html/r547bb14c88c5da2588d853ed3030be0109efa53...
https://lists.apache.org/thread.html/r5494fdaf4a0a42a15c49841ba7ae577d466d092...
https://lists.apache.org/thread.html/r556787f1ab14da034d79dfff0c123c05877bbe8...
https://lists.apache.org/thread.html/r568d354961fa88f206dc345411fb11d245c6dc1...
https://lists.apache.org/thread.html/r58f5b14dc5ae43583db3a7e872419aca97ebe47...
https://lists.apache.org/thread.html/r59e0878013d329dcc481eeafebdb0ee445b1e28...
https://lists.apache.org/thread.html/r5a07f274f355c914054c7357ad6d3456ffaca06...
https://lists.apache.org/thread.html/r5a9462096c71593e771602beb0e69357adb5175...
https://lists.apache.org/thread.html/r6236ae4adc401e3b2f2575c22865f2f6c6ea9ff...
https://lists.apache.org/thread.html/r66e99d973fd79ddbcb3fbdb24f4767fe9b911f5...
https://lists.apache.org/thread.html/r6b83ca85c8f9a6794b1f85bc70d1385ed7bc1ad...
https://lists.apache.org/thread.html/r6dfa64ecc3d67c1a71c08bfa04064549179d499...
https://lists.apache.org/thread.html/r6f51a654ac2e67e3d1c65a8957cbbb127c3f15b...
https://lists.apache.org/thread.html/r70f8bcccd304bd66c1aca657dbfc2bf11f73add...
https://lists.apache.org/thread.html/r71da5f51ef04cb95abae560425dce9667740cbd...
https://lists.apache.org/thread.html/r73b5a9b677b707bbb7c1469ea746312c47838b3...
https://lists.apache.org/thread.html/r761a52f1e214efec286ee80045d0012e955eeba...
https://lists.apache.org/thread.html/r769411eb43dd9ef77665700deb7fc491fc3ceb5...
https://lists.apache.org/thread.html/r77dd041d8025a869156481d2268c67ad17121f6...
https://lists.apache.org/thread.html/r7bdc83513c12db1827b79b8d57a7a0975a25d28...
https://lists.apache.org/thread.html/r7da5ae60d7973e8894cfe92f49ecb5b47417eef...
https://lists.apache.org/thread.html/r8045eedd6bb74efcd8e01130796adbab98ee4a0...
https://lists.apache.org/thread.html/r819857361f5a156e90d6d06ccf6c41026bc9903...
https://lists.apache.org/thread.html/r827d17bf6900eddc686f4b6ee16fc5e52ca0070...
https://lists.apache.org/thread.html/r874688141495df766e62be095f1dfb0bf4a24ca...
https://lists.apache.org/thread.html/r87b0c69fef09277333a7e1716926d1f237d462e...
https://lists.apache.org/thread.html/r87d8337300a635d66f0bb838bf635cdfcbba6b9...
https://lists.apache.org/thread.html/r8866f0cd2a3b319288b7eea20ac137b9f260c81...
https://lists.apache.org/thread.html/r8cacf91ae1b17cc6531d20953c52fa52f6fd319...
https://lists.apache.org/thread.html/r8dd01541fc49d24ec223365a9974231cbd7378b...
https://lists.apache.org/thread.html/r8fead0144bb84d8714695c43607dca9c5101aa0...
https://lists.apache.org/thread.html/r90b5ac6e2bf190a5297bda58c7ec76d01cd86ff...
https://lists.apache.org/thread.html/r911c1879258ebf98bca172c0673350eb7ea6569...
https://lists.apache.org/thread.html/r916b6542bd5b15a8a7ff8fc14a0e0331e8e3e9d...
https://lists.apache.org/thread.html/r93b240be16e642579ed794325bae31b040e1af8...
https://lists.apache.org/thread.html/r93d5e81e879120d8d87925dbdd4045cb3afa9b0...
https://lists.apache.org/thread.html/r9b790fe3a93121199f41258474222f15002b2f7...
https://lists.apache.org/thread.html/r9c010b79140452294292379183e7fe8e3533c5b...
https://lists.apache.org/thread.html/r9cc76b98f87738791b8ec3736755f92444d3c8c...
https://lists.apache.org/thread.html/r9cd444f944241dc26d9b8b007fe8971ed7f005b...
https://lists.apache.org/thread.html/r9d9b4b93df7f92cdf1147db0fc169be1776c93d...
https://lists.apache.org/thread.html/r9f8c45a2a4540911cd8bd0485f67e8091883c92...
https://lists.apache.org/thread.html/ra1f19625cc67ac1b459c558f2ea5647d71ce51c...
https://lists.apache.org/thread.html/ra55e04d5a73afcb8383f4386e2b26832c6e3972...
https://lists.apache.org/thread.html/ra5b7313d8cc9411db6790adfba33f2cf0665cb7...
https://lists.apache.org/thread.html/raa9c370ab42d737e93bc1795bb6a2187d7c6021...
https://lists.apache.org/thread.html/rad255c736fad46135f1339408cb0147d0671e45...
https://lists.apache.org/thread.html/rae15d73cabef55bad148e4e6449b05da95646a2...
https://lists.apache.org/thread.html/raf9c581b793c30ff8f55f2415c7bd337eb69775...
https://lists.apache.org/thread.html/rafb023a7c61180a1027819678eb2068b0b60cd5...
https://lists.apache.org/thread.html/rb077d35f2940191daeefca0d6449cddb2e9d06b...
https://lists.apache.org/thread.html/rb5f2558ea2ac63633dfb04db1e8a6ea6bb1a2b8...
https://lists.apache.org/thread.html/rb69b1d7008a4b3de5ce5867e41a455693907026...
https://lists.apache.org/thread.html/rb7e159636b26156f6ef2b2a1a79b3ec9a026923...
https://lists.apache.org/thread.html/rb81a018f83fe02c95a2138a7bb4f1e1677bd7e1...
https://lists.apache.org/thread.html/rb8ad3745cb94c60d44cc369aff436eaf03dbc93...
https://lists.apache.org/thread.html/rb8c007f87dc57731a7b9a3b05364530422535b7...
https://lists.apache.org/thread.html/rbc5a622401924fadab61e07393235838918228b...
https://lists.apache.org/thread.html/rbc5a8d7a0a13bc8152d427a7e9097cdeb139c6c...
https://lists.apache.org/thread.html/rbf99e4495461099cad9aa62e0164f8f25a7f97b...
https://lists.apache.org/thread.html/rc1646894341450fdc4f7e96a88f5e2cf18d8004...
https://lists.apache.org/thread.html/rc1d9b8e9d17749d4d2b9abaaa72c422d090315b...
https://lists.apache.org/thread.html/rc2e24756d28580eeac811c5c6a12012c9f424b6...
https://lists.apache.org/thread.html/rc44d1147f78496ec9932a38b28795ff4fd0c4fa...
https://lists.apache.org/thread.html/rc4b972ea10c5a65c6a88a6e233778718ab9af7f...
https://lists.apache.org/thread.html/rc77918636d8744d50312e4f67ba2e01f47db3ec...
https://lists.apache.org/thread.html/rc8dd95802be0cca8d7d0929c0c8484ede384ecb...
https://lists.apache.org/thread.html/rc9d2ab8a6c7835182f20b01104798e67c75db65...
https://lists.apache.org/thread.html/rccedec4cfd5df6761255b71349e3b7c27ee0745...
https://lists.apache.org/thread.html/rcdcf32952397c83a1d617a8c9cd5c15c98b8d0d...
https://lists.apache.org/thread.html/rcdd56ab4255801a0964dcce3285e87f2c6994e6...
https://lists.apache.org/thread.html/rcfb95a7c69c4b9c082ea1918e812dfc45aa0d1e...
https://lists.apache.org/thread.html/rcff5caebfd535195276aaabc1b631fd55a4ff6b...
https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2...
https://lists.apache.org/thread.html/rd58b60ab2e49ebf21022e59e280feb25899ff78...
https://lists.apache.org/thread.html/rd7e62e2972a41c2658f41a824b8bdd15644d80f...
https://lists.apache.org/thread.html/rdbf1cd0ab330c032f3a09b453cb6405dccc905a...
https://lists.apache.org/thread.html/rdddb4b06e86fd58a1beda132f22192af2f9b56a...
https://lists.apache.org/thread.html/rde11c433675143d8d27551c3d9e821fe1955f15...
https://lists.apache.org/thread.html/rde782fd8e133f7e04e50c8aaa4774df52436776...
https://lists.apache.org/thread.html/re08b03cd1754b32f342664eead415af48092c63...
https://lists.apache.org/thread.html/re5706141ca397587f7ee0f500a39ccc590a41f8...
https://lists.apache.org/thread.html/ree506849c4f04376793b1a3076bc017da60b8a2...
https://lists.apache.org/thread.html/refbbb0eb65c185d1fa491cee08ac8ed32708ce3...
https://lists.apache.org/thread.html/rf00ea6376f3d0e8b8f62cf6d4a4f28b24e27193...
https://lists.apache.org/thread.html/rf3bc023a7cc729aeac72f482e2eeeab9008aa6b...
https://lists.apache.org/thread.html/rfd9f102864a039f7fda64a580dfe1a342d65d7b...
https://lists.apache.org/thread.html/rfe5caef1fd6cf4b8ceac1b63c33195f2908517b...
https://lists.apache.org/thread.html/rfe6ba83d14545e982400dea89e68b10113cb520...
https://lists.apache.org/thread.html/rff0ad6a7dac2182421e2db2407e44fbb61a8990...
https://lists.debian.org/debian-lts-announce/2021/05/msg00016.html
https://security.netapp.com/advisory/ntap-20201123-0005/
https://www.debian.org/security/2021/dsa-4949
https://www.oracle.com//security-alerts/cpujul2021.html
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.oracle.com/security-alerts/cpujan2021.html
https://www.oracle.com/security-alerts/cpuoct2021.html
受影响软件情况
# 类型 厂商 产品 版本 影响面
1
运行在以下环境
应用 eclipse jetty * From
(including)
1.0
Up to
(excluding)
9.3.29
运行在以下环境
应用 eclipse jetty * From
(including)
9.4.0
Up to
(including)
9.4.32
运行在以下环境
应用 eclipse jetty 10.0.0 -
运行在以下环境
应用 eclipse jetty 11.0.0 -
运行在以下环境
应用 netapp snapcenter - -
运行在以下环境
应用 netapp snap_creator_framework - -
运行在以下环境
应用 netapp storage_replication_adapter * From
(including)
7.2
运行在以下环境
应用 netapp vasa_provider * From
(including)
7.2
运行在以下环境
应用 netapp virtual_storage_console * From
(including)
7.2
运行在以下环境
应用 vmware vsphere - -
运行在以下环境
系统 debian_10 jetty9 * Up to
(excluding)
9.4.16-0+deb10u1
运行在以下环境
系统 debian_9 jetty9 * Up to
(excluding)
9.2.30-0+deb9u1
阿里云评分
2.3
  • 攻击路径
    本地
  • 攻击复杂度
    困难
  • 权限要求
    普通权限
  • 影响范围
    有限影响
  • EXP成熟度
    未验证
  • 补丁情况
    官方补丁
  • 数据保密性
    无影响
  • 数据完整性
    无影响
  • 服务器危害
    无影响
  • 全网数量
    100
CWE-ID 漏洞类型
NVD-CWE-Other
阿里云安全产品覆盖情况