SB2021071513 - Multiple vulnerabilities in Red Hat JBoss Enterprise Application Platform 7.3

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Inconsistent interpretation of HTTP requests (CVE-ID: CVE-2021-21409)

The vulnerability allows a remote attacker to preform HTTP request smuggling attacks.

The vulnerability exists due to improper validation of HTTP requests in io.netty:netty-codec-http2 in Netty, if the request only uses a single Http2HeaderFrame with the endStream set to to true. A remote attacker can send a specially crafted HTTP request to the server and smuggle arbitrary HTTP headers.

Successful exploitation of vulnerability may allow an attacker to poison HTTP cache and perform phishing attacks.

2) Cross-site scripting (CVE-ID: CVE-2021-3536)

The vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data when processing data passed via the admin console, it is possible to add a payload in the name field, leading to XSS. This affects Confidentiality and Integrity. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

Remediation

Install update from vendor's website.

References

• https://access.redhat.com/errata/RHSA-2021:2693
• https://access.redhat.com/errata/RHSA-2021:2692
• https://access.redhat.com/errata/RHSA-2021:2694