SB2024011822 - Multiple vulnerabilities in JD Edwards EnterpriseOne Tools

Description

This security bulletin contains information about 8 secuirty vulnerabilities.

1) Improper input validation (CVE-ID: CVE-2024-20957)

The vulnerability allows a remote privileged user to perform service disruption.

The vulnerability exists due to improper input validation within the Package Build SEC component in JD Edwards EnterpriseOne Tools. A remote privileged user can exploit this vulnerability to perform service disruption.

2) Improper input validation (CVE-ID: CVE-2024-20905)

The vulnerability allows a remote privileged user to perform service disruption.

The vulnerability exists due to improper input validation within the Enterprise Infrastructure SEC component in JD Edwards EnterpriseOne Tools. A remote privileged user can exploit this vulnerability to perform service disruption.

3) Improper input validation (CVE-ID: CVE-2024-20937)

The vulnerability allows a remote authenticated user to gain access to sensitive information.

The vulnerability exists due to improper input validation within the Monitoring and Diagnostics SEC component in JD Edwards EnterpriseOne Tools. A remote authenticated user can exploit this vulnerability to gain access to sensitive information.

4) Resource management error (CVE-ID: CVE-2023-2650)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources within the application when processing OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS subsystems with no message size limit. A remote attacker can send specially crafted data to the application and perform a denial of service (DoS) attack.

5) Stack-based buffer overflow (CVE-ID: CVE-2022-3479)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error within the NSS_GetClientAuthData() function in /lib/ssl/authcert.c when accessing gnutls server without a user certificate in the database. A remote attacker can trigger a stack-based buffer overflow and crash the application using the affected library.

6) Incorrect Regular Expression (CVE-ID: CVE-2023-28756)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient input validation when processing strings that have specific characters. A remote attacker can pass specially crafted data to the application and perform regular expression denial of service (ReDos) attack.

7) Heap-based buffer overflow (CVE-ID: CVE-2022-37434)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing a large gzip header within inflateGetHeader in inflate.c. A remote attacker can pass a specially crafted file to the affected application, trigger heap-based buffer overflow and execute arbitrary code on the target system.

8) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2023-32002)

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to improperly imposed security restrictions for the Module._load() method. A remote attacker can bypass the policy mechanism and include modules outside of the policy.json definition for a given module.

Remediation

Install update from vendor's website.

References

• https://www.oracle.com/security-alerts/cpujan2024.html?3195