CVE-2020-5245

HIGH

Dropwizard-Validation < 1.3.19 - Remote Code Execution via Java Expression Language Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-5245. PoCs published by LycsHub.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2020-5245, demonstrating an RCE vulnerability in Dropwizard's self-validating beans via expression language injection. The exploit leverages a crafted query parameter to execute arbitrary commands through JavaScript evaluation.

Description

Dropwizard-Validation before 1.3.19, and 2.0.2 may allow arbitrary code execution on the host system, with the privileges of the Dropwizard service account, by injecting arbitrary Java Expression Language expressions when using the self-validating feature. The issue has been fixed in dropwizard-validation 1.3.19 and 2.0.2.

Exploits (1)

nomisec WORKING POC

by LycsHub · poc

https://github.com/LycsHub/CVE-2020-5245

View Code ZIP pw:eip

This repository contains a functional exploit PoC for CVE-2020-5245, demonstrating an RCE vulnerability in Dropwizard's self-validating beans via expression language injection. The exploit leverages a crafted query parameter to execute arbitrary commands through JavaScript evaluation.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Dropwizard (versions affected by CVE-2020-5245)

No auth needed

Prerequisites: Dropwizard application with vulnerable self-validating bean endpoint exposed

MITRE ATT&CK