{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/86794?format=json","vulnerability_id":"VCID-kyg5-jt5k-xkaq","summary":"Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution","aliases":[{"alias":"CVE-2017-1000486"},{"alias":"GHSA-j239-4gqg-5j54"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/383388?format=json","purl":"pkg:maven/org.primefaces/primefaces@6.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.primefaces/primefaces@6.0"}],"affected_packages":[],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-1000486","reference_id":"","reference_type":"","scores":[{"value":"0.93884","scoring_system":"epss","scoring_elements":"0.99882","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-1000486"},{"reference_url":"https://cryptosense.com/weak-encryption-flaw-in-primefaces","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://cryptosense.com/weak-encryption-flaw-in-primefaces"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2017-1000486","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2017-1000486"},{"reference_url":"https://www.exploit-db.com/exploits/43733","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.exploit-db.com/exploits/43733"},{"reference_url":"https://github.com/primefaces/primefaces/issues/1152","reference_id":"1152","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T14:04:19Z/"}],"url":"https://github.com/primefaces/primefaces/issues/1152"},{"reference_url":"https://www.exploit-db.com/exploits/43733/","reference_id":"43733","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T14:04:19Z/"}],"url":"https://www.exploit-db.com/exploits/43733/"},{"reference_url":"http://blog.mindedsecurity.com/2016/02/rce-in-oracle-netbeans-opensource.html","reference_id":"rce-in-oracle-netbeans-opensource.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T14:04:19Z/"}],"url":"http://blog.mindedsecurity.com/2016/02/rce-in-oracle-netbeans-opensource.html"},{"reference_url":"https://cryptosense.com/weak-encryption-flaw-in-primefaces/","reference_id":"weak-encryption-flaw-in-primefaces","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Act","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:Y/T:T/P:M/B:A/M:M/D:C/2025-02-07T14:04:19Z/"}],"url":"https://cryptosense.com/weak-encryption-flaw-in-primefaces/"}],"weaknesses":[{"cwe_id":326,"name":"Inadequate Encryption Strength","description":"The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required."}],"exploits":[{"date_added":null,"description":"This module exploits a Java Expression Language remote code execution flaw in the Primefaces JSF framework.\n          Primefaces versions prior to 5.2.21, 5.3.8 or 6.0 are vulnerable to a padding oracle attack,\n          due to the use of weak crypto and default encryption password and salt.\n\n          Tested against Docker image with Tomcat 7.0 with the Primefaces 5.2 showcase application. See\n          documentation for working payloads.","required_action":null,"due_date":null,"notes":"Stability:\n  - crash-safe\nReliability:\n  - repeatable-session\nSideEffects: []\n","known_ransomware_campaign_use":false,"source_date_published":"2016-02-15","exploit_type":null,"platform":"BSD,Linux,OSX,Unix,Windows","source_date_updated":null,"data_source":"Metasploit","source_url":"https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/multi/http/primefaces_weak_encryption_rce.rb"},{"date_added":"2022-01-10","description":"Primetek Primefaces is vulnerable to a weak encryption flaw resulting in remote code execution","required_action":"Apply updates per vendor instructions.","due_date":"2022-07-10","notes":"https://nvd.nist.gov/vuln/detail/CVE-2017-1000486","known_ransomware_campaign_use":false,"source_date_published":null,"exploit_type":null,"platform":null,"source_date_updated":null,"data_source":"KEV","source_url":null}],"severity_range_score":"9.0 - 10.0","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kyg5-jt5k-xkaq"}