CVE-2024-1233

high

Description

A flaw was found in` JwtValidator.resolvePublicKey` in JBoss EAP, where the validator checks jku and sends a HTTP request. During this process, no whitelisting or other filtering behavior is performed on the destination URL address, which may result in a server-side request forgery (SSRF) vulnerability.

References

https://issues.redhat.com/browse/WFLY-19226

https://github.com/wildfly/wildfly/pull/17812/commits/0c02350bc0d84287bed46e7c32f90b36e50d3523

https://github.com/advisories/GHSA-v4mm-q8fv-r2w5

https://bugzilla.redhat.com/show_bug.cgi?id=2262849

https://access.redhat.com/security/cve/CVE-2024-1233

https://access.redhat.com/errata/RHSA-2024:3583

https://access.redhat.com/errata/RHSA-2024:3581

https://access.redhat.com/errata/RHSA-2024:3580

https://access.redhat.com/errata/RHSA-2024:3563

https://access.redhat.com/errata/RHSA-2024:3561

https://access.redhat.com/errata/RHSA-2024:3560

https://access.redhat.com/errata/RHSA-2024:3559

Details

Source: Mitre, NVD

Published: 2024-04-09

Updated: 2024-06-04

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 7.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Severity: High