CVE-2014-3137

Bottle 0.10.x before 0.10.12, 0.11.x before 0.11.7, and 0.12.x before 0.12.6 does not properly limit content types, which allows remote attackers to bypass intended access restrictions via an accepted Content-Type followed by a ; (semi-colon) and a Content-Type that would not be accepted, as demonstrated in YouCompleteMe to execute arbitrary code.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.debian.org/security/2014/dsa-2948
http://www.openwall.com/lists/oss-security/2014/05/01/15
https://bugzilla.redhat.com/show_bug.cgi?id=1093255	Patch Vendor Advisory
https://github.com/defnull/bottle/issues/616
http://www.debian.org/security/2014/dsa-2948
http://www.openwall.com/lists/oss-security/2014/05/01/15
https://bugzilla.redhat.com/show_bug.cgi?id=1093255	Patch Vendor Advisory
https://github.com/defnull/bottle/issues/616

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:bottlepy:bottle:0.10.0:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.1:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.2:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.3:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.4:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.5:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.6:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.7:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.8:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.9:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.10:::::::*
	cpe:2.3:a:bottlepy:bottle:0.10.11:::::::*
	cpe:2.3:a:bottlepy:bottle:0.11.0:::::::*
	cpe:2.3:a:bottlepy:bottle:0.11.1:::::::*
	cpe:2.3:a:bottlepy:bottle:0.11.2:::::::*
	cpe:2.3:a:bottlepy:bottle:0.11.3:::::::*
	cpe:2.3:a:bottlepy:bottle:0.11.4:::::::*
	cpe:2.3:a:bottlepy:bottle:0.11.5:::::::*
	cpe:2.3:a:bottlepy:bottle:0.11.6:::::::*
	cpe:2.3:a:bottlepy:bottle:0.11.7:::::::*
	cpe:2.3:a:bottlepy:bottle:0.12.0:::::::*
	cpe:2.3:a:bottlepy:bottle:0.12.1:::::::*
	cpe:2.3:a:bottlepy:bottle:0.12.2:::::::*
	cpe:2.3:a:bottlepy:bottle:0.12.3:::::::*
	cpe:2.3:a:bottlepy:bottle:0.12.4:::::::*
	cpe:2.3:a:bottlepy:bottle:0.12.5:::::::*

History

21 Nov 2024, 02:07

Type	Values Removed	Values Added
References	~~() http://www.debian.org/security/2014/dsa-2948 -~~	() http://www.debian.org/security/2014/dsa-2948 -
References	~~() http://www.openwall.com/lists/oss-security/2014/05/01/15 -~~	() http://www.openwall.com/lists/oss-security/2014/05/01/15 -
References	~~() https://bugzilla.redhat.com/show_bug.cgi?id=1093255 - Patch, Vendor Advisory~~	() https://bugzilla.redhat.com/show_bug.cgi?id=1093255 - Patch, Vendor Advisory
References	~~() https://github.com/defnull/bottle/issues/616 -~~	() https://github.com/defnull/bottle/issues/616 -

Information

Published : 2014-10-25 22:55

Updated : 2025-04-12 10:46

NVD link : CVE-2014-3137

Mitre link : CVE-2014-3137

CVE.ORG link : CVE-2014-3137

JSON object : View

Products Affected

bottlepy

bottle

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2014-3137", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-10-25T22:55:04.227", "references": [{"url": "http://www.debian.org/security/2014/dsa-2948", "source": "cve@mitre.org"}, {"url": "http://www.openwall.com/lists/oss-security/2014/05/01/15", "source": "cve@mitre.org"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1093255", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://github.com/defnull/bottle/issues/616", "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2014/dsa-2948", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.openwall.com/lists/oss-security/2014/05/01/15", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1093255", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/defnull/bottle/issues/616", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Bottle 0.10.x before 0.10.12, 0.11.x before 0.11.7, and 0.12.x before 0.12.6 does not properly limit content types, which allows remote attackers to bypass intended access restrictions via an accepted Content-Type followed by a ; (semi-colon) and a Content-Type that would not be accepted, as demonstrated in YouCompleteMe to execute arbitrary code."}, {"lang": "es", "value": "Bottle 0.10.x anterior a 0.10.12, 0.11.x anterior a 0.11.7, y 0.12.x anterior a 0.12.6 no limita debidamente los tipos de contenido, lo que permite a atacantes remotos evadir las restricciones de acceso a trav\u00e9s de un tipo de contenido aceptado seguido por un ; (punto y coma) y un tipo de contenido que no ser\u00eda aceptado, tal y como fue demostrado en YouCompleteMe en ejecutar c\u00f3digo arbitrario."}], "lastModified": "2025-04-12T10:46:40.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E058D585-505D-40C8-981C-777FAD4CE76E"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6A873B4-3514-43C6-A56C-864F5C7D32A6"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05A9FBC1-3913-4415-9252-BAD64E7BAE24"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2C4AB11-2FE1-4838-9EB1-D717EF9C1913"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F182340-E3D4-4154-87F5-C7250F72CA29"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54C815D7-B32C-48C3-93F1-E880663AA40C"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65727781-59B5-4B85-8A69-A941AF7FD96C"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B206DC38-5709-476A-8E07-62274DC723DF"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "29775171-7DBF-49AE-9C50-2F4F459BD001"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C98DD99B-DED7-479E-A667-EF25250258C1"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F045CA7-D851-451C-B92C-58C4680ADA72"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.10.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43C3596D-6479-4D86-87F4-AC2515F18606"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.11.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22C49C4C-50F7-483A-83DF-B9661EB18CB5"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.11.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D5748B16-B590-432E-936F-96E7AD4DFF46"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.11.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1B60D53-D42D-4242-BED9-846002E04602"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.11.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E16DC59-B939-4364-8021-BDDCBFF9932E"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.11.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA02677A-55EB-4013-AEF1-1B0036C4CF7E"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.11.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE4581ED-8D26-46C5-91C3-16D0ACB46B04"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.11.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "057AA722-33F9-47A2-BC3F-5B3DF6C5539E"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.11.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CF7BE61-6F01-4698-A556-B2A0BAA6590D"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08006A0E-C85B-498A-9D72-C523D6D2D119"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.12.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAE099C5-0490-4CD7-8DFD-9FA8B8A7BF02"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.12.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBA3D830-1F84-4FCE-BD9D-0698E38DBD71"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.12.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D45AFE66-EF46-4A46-BBDA-493CCCFDE199"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.12.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43F38F6F-2A6C-406E-9756-1F41B70F8B87"}, {"criteria": "cpe:2.3:a:bottlepy:bottle:0.12.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6C4A37C-90A0-4DCF-BC9D-BC21CCFD430D"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

6.8 /10