{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-01-02T00:00:00", "descriptions": [{"lang": "en", "value": "The CSV export in Apache LDAP Studio and Apache Directory Studio before 2.0.0-M10 does not properly escape field values, which might allow attackers to execute arbitrary commands by leveraging a crafted LDAP entry that is interpreted as a formula when imported into a spreadsheet."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-07-24T10:06:13", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://directory.apache.org/studio/news.html"}, {"name": "20160102 [SECURITY] CVE-2015-5349: Apache Directory Studio command injection vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/537225/100/0/threaded"}, {"name": "[directory-commits] 20210724 [directory-site] branch master updated: Publish CVE-2021-33900", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/reb5443aaf781b364896ee9d7cf6e97fdc4f5a5174132c319252963b6%40%3Ccommits.directory.apache.org%3E"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2015-5349", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The CSV export in Apache LDAP Studio and Apache Directory Studio before 2.0.0-M10 does not properly escape field values, which might allow attackers to execute arbitrary commands by leveraging a crafted LDAP entry that is interpreted as a formula when imported into a spreadsheet."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://directory.apache.org/studio/news.html", "refsource": "CONFIRM", "url": "https://directory.apache.org/studio/news.html"}, {"name": "20160102 [SECURITY] CVE-2015-5349: Apache Directory Studio command injection vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/537225/100/0/threaded"}, {"name": "[directory-commits] 20210724 [directory-site] branch master updated: Publish CVE-2021-33900", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/reb5443aaf781b364896ee9d7cf6e97fdc4f5a5174132c319252963b6@%3Ccommits.directory.apache.org%3E"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T06:41:09.261Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://directory.apache.org/studio/news.html"}, {"name": "20160102 [SECURITY] CVE-2015-5349: Apache Directory Studio command injection vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/537225/100/0/threaded"}, {"name": "[directory-commits] 20210724 [directory-site] branch master updated: Publish CVE-2021-33900", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.apache.org/thread.html/reb5443aaf781b364896ee9d7cf6e97fdc4f5a5174132c319252963b6%40%3Ccommits.directory.apache.org%3E"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2015-5349", "datePublished": "2016-04-11T21:00:00", "dateReserved": "2015-07-01T00:00:00", "dateUpdated": "2024-08-06T06:41:09.261Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:ldap_studio:0.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "0ED48F80-2E2C-4736-8800-F16EDBA3B892", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ldap_studio:0.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "6A04C6E6-3303-4C1D-B827-103771DC33CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ldap_studio:0.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "4349D668-3A3A-468C-8A89-47AD60A8CE60", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:ldap_studio:0.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "772B39E3-45CF-416E-BAA7-EA174EAEEF55", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:directory_studio:1.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "B58B8167-A66C-4541-8CB2-AB17353D1AFC", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "EEE6208C-1261-40C7-950A-46DBBD00B512", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "1404060E-F099-4CBC-AE76-1D9097AF2654", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.1.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "0BA37EB7-96DF-4963-BC94-A77E1B142B91", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.1.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "E1CD40E0-4E91-47C6-B835-19EE4C560C2F", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "A8A35F76-1D5A-4555-9E22-09185FDF485F", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.2.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "65A3C9CD-77A4-4F6F-9278-7D5716570D76", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "E880F196-3A74-42FC-AB93-2321BBE0CD09", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.3.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "08B4C0E1-943E-4A4B-B8C8-81F394FCEE14", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "A4FB9313-56A9-49F1-858B-DC3219B3AE61", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "7BCDE72A-4CF5-4CC6-9FF7-00F72ED2A8C7", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "8228C239-954D-4081-B661-454A768AF2E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "D910101F-E2B9-4975-9C04-1357F22181F1", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:1.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "5C1CCFF2-56AD-467F-9E59-530E82CB0341", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:2.0.0:milestone1:*:*:*:*:*:*", "matchCriteriaId": "F448B4EE-906D-48B7-9A77-F2526D5231BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:2.0.0:milestone2:*:*:*:*:*:*", "matchCriteriaId": "453D1BC2-E437-4B32-8B3F-6C46C24D6560", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:2.0.0:milestone3:*:*:*:*:*:*", "matchCriteriaId": "8BDAE9FB-358A-48BA-A024-129B782F34E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:2.0.0:milestone4:*:*:*:*:*:*", "matchCriteriaId": "27F8DBFF-33E4-48C3-B6B1-8CC5F7DBE26B", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:2.0.0:milestone5:*:*:*:*:*:*", "matchCriteriaId": "25C6E025-8797-4746-B5C6-937D1A271377", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:2.0.0:milestone6:*:*:*:*:*:*", "matchCriteriaId": "54859B52-DFB7-4F4E-BA7E-2E52508B0F3F", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:2.0.0:milestone7:*:*:*:*:*:*", "matchCriteriaId": "D2E1866F-39AC-4640-8D43-4BE5336A14B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:2.0.0:milestone8:*:*:*:*:*:*", "matchCriteriaId": "22414369-BFA3-4A81-904F-D01BCF3B910E", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:directory_studio:2.0.0:milestone9:*:*:*:*:*:*", "matchCriteriaId": "F87C0471-9DE5-4334-9944-8A81E5416E98", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The CSV export in Apache LDAP Studio and Apache Directory Studio before 2.0.0-M10 does not properly escape field values, which might allow attackers to execute arbitrary commands by leveraging a crafted LDAP entry that is interpreted as a formula when imported into a spreadsheet."}, {"lang": "es", "value": "La exportaci\u00f3n en CSV en Apache LDAP Studio y Apache Directory Studio en versiones anteriores a 2.0.0-M10 no escapa correctamente valores de campos, lo que podr\u00eda permitir a atacantes ejecutar comandos arbitrarios aprovech\u00e1ndose de una entrada LDAP manipulada que se interpreta como una f\u00f3rmula cuando se importa en una hoja de c\u00e1lculo."}], "id": "CVE-2015-5349", "lastModified": "2024-11-21T02:32:50.740", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "[email protected]", "type": "Primary"}]}, "published": "2016-04-11T21:59:06.070", "references": [{"source": "[email protected]", "url": "http://www.securityfocus.com/archive/1/537225/100/0/threaded"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://directory.apache.org/studio/news.html"}, {"source": "[email protected]", "url": "https://lists.apache.org/thread.html/reb5443aaf781b364896ee9d7cf6e97fdc4f5a5174132c319252963b6%40%3Ccommits.directory.apache.org%3E"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/537225/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://directory.apache.org/studio/news.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.apache.org/thread.html/reb5443aaf781b364896ee9d7cf6e97fdc4f5a5174132c319252963b6%40%3Ccommits.directory.apache.org%3E"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-77"}], "source": "[email protected]", "type": "Primary"}]}

{"bugzilla": {"description": "apache-directory: command injection via crafted LDAP entry that is interpreted as a formula when imported into a spreadsheet", "id": "1987038", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1987038"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.8", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-77", "details": ["The CSV export in Apache LDAP Studio and Apache Directory Studio before 2.0.0-M10 does not properly escape field values, which might allow attackers to execute arbitrary commands by leveraging a crafted LDAP entry that is interpreted as a formula when imported into a spreadsheet.", "A flaw was found in the CSV export in Apache LDAP Studio and Apache Directory Studio, where it does not properly escape field values. This flaw allows attackers to execute arbitrary commands by leveraging a crafted LDAP entry that is interpreted as a formula when imported into a spreadsheet. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability."], "name": "CVE-2015-5349", "package_state": [{"cpe": "cpe:/a:redhat:openjdk:11", "fix_state": "Not affected", "package_name": "javax.inject", "product_name": "Red Hat build of OpenJDK 11"}], "public_date": "2016-04-11T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2015-5349\nhttps://nvd.nist.gov/vuln/detail/CVE-2015-5349\nhttp://www.securityfocus.com/archive/1/537225/100/0/threaded\nhttps://directory.apache.org/studio/news.html"], "threat_severity": "Important", "upstream_fix": "Apache Directory Studio 2.0-0-M10"}