CVE-2019-12180

moderate-risk
Published 2020-02-05

An issue was discovered in SmartBear ReadyAPI through 2.8.2 and 3.0.0 and SoapUI through 5.5. When opening a project, the Groovy "Load Script" is automatically executed. This allows an attacker to execute arbitrary Groovy Language code (Java scripting language) on the victim machine by inducing it to open a malicious Project. The same issue is present in the "Save Script" function, which is executed automatically when saving a project.

Do I need to act?

~
8.6% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.8/10 High
LOCAL / LOW complexity

Affected Products (2)

Soapui

Affected Vendors

Smartbear

References (2)

Exploit https://lab.mediaservice.net/advisory/2020-04-readyapi-soapui.txt
Exploit https://lab.mediaservice.net/advisory/2020-04-readyapi-soapui.txt
41
/ 100
moderate-risk
Severity 24/34 · High
Exploitability 10/34 · Low
Exposure 7/34 · Low