Vulnerabilities > CVE-2018-1295 - Deserialization of Untrusted Data vulnerability in Apache Ignite

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

apache

CWE-502

critical

NVD

Published: 2018-04-02

Updated: 2023-11-07

Summary

In Apache Ignite 2.3 or earlier, the serialization mechanism does not have a list of classes allowed for serialization/deserialization, which makes it possible to run arbitrary code when 3-rd party vulnerable classes are present in Ignite classpath. The vulnerability can be exploited if the one sends a specially prepared form of a serialized object to one of the deserialization endpoints of some Ignite components - discovery SPI, Ignite persistence, Memcached endpoint, socket steamer.

Vulnerable Configurations

Part	Description	Count
Application	Apache Apache Ignite 1.0.0 Apache Ignite 1.0.1 Apache Ignite 1.0.2 Apache Ignite 1.1.0 Apache Ignite 1.1.3 Apache Ignite 1.1.4 Apache Ignite 1.2.0 Apache Ignite 1.3.0 Apache Ignite 1.3.1 Apache Ignite 1.3.2 Apache Ignite 1.3.3 Apache Ignite 1.4.0 Apache Ignite 1.4.1 Apache Ignite 1.5.0 Apache Ignite 1.6.0 Apache Ignite 1.6.4 Apache Ignite 1.7.0 Apache Ignite 1.7.10 Apache Ignite 1.8.0 Apache Ignite 1.9.0 Apache Ignite 2.0.0 Apache Ignite 2.1.0 Apache Ignite 2.1.1 Apache Ignite 2.2.0 Apache Ignite 2.3.0	28

Common Weakness Enumeration (CWE)

CWE-502 - Deserialization of Untrusted Data

Redhat

advisories

rhsa

id	RHSA-2018:2405

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Redhat

References