Exploit for Path Traversal in Alibabagroup One-Java-Agent_91255BC8-23AA-5E69-8182-76128154DDB6

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

# one-java-agent
![JavaCI](https://github.com/alibaba/one-java-agent/workflows/JavaCI/badge.svg)
[![maven](https://img.shields.io/maven-central/v/com.alibaba/one-java-agent.svg)](https://search.maven.org/search?q=g:com.alibaba%20AND%20a:one-java-agent*)
![license](https://img.shields.io/github/license/alibaba/one-java-agent.svg)
[![Average time to resolve an issue](http://isitmaintained.com/badge/resolution/alibaba/one-java-agent.svg)](http://isitmaintained.com/project/alibaba/one-java-agent "Average time to resolve an issue")
[![Percentage of issues still open](http://isitmaintained.com/badge/open/alibaba/one-java-agent.svg)](http://isitmaintained.com/project/alibaba/one-java-agent "Percentage of issues still open")

## 目标

1. 提供插件化支持，统一管理众多的Java Agent
2. 插件支持install/unstall，需要插件方实现接口
3. 支持传统的java agent，即已经开发好的java agent

## 插件系统

插件如果希望感知生命周期，可以实现 `PluginActivator`接口：

```java
public interface PluginActivator {
// 让插件本身判断是否要启动
boolean enabled(PluginContext context);

public void init(PluginContext context) throws Exception;

/**
* Before calling this method, the {@link PluginState} is
* {@link PluginState#STARTING}, after calling, the {@link PluginState} is
* {@link PluginState#ACTIVE}
*
* @param context
*/
public void start(PluginContext context) throws Exception;

/**
* Before calling this method, the {@link PluginState} is
* {@link PluginState#STOPPING}, after calling, the {@link PluginState} is
* {@link PluginState#RESOLVED}
*
* @param context
*/
public void stop(PluginContext context) throws Exception;
}
```

## 传统的java agent

插件目录下面放一个`plugin.properties`，并且放上原生的agent jar文件。

例如：

```
type=traditional
name=demo-agent
version=1.0.0
agentJarPath=demo-agent.jar
```

则 one java agent会启动这个`demo-agent`。

## 编译开发

* 本项目依赖 bytekit: https://github.com/alibaba/bytekit ，可能需要先`mvn clean install` bytekit
* 执行测试： `mvn clean package -DskipTests && mvn test`
* `mvn clean package -P local -DskipTests`会打包后安装最新到本地 `~/oneoneagent` 目录下

Visit Original Source

Basic Information

ID 91255BC8-23AA-5E69-8182-76128154DDB6

Published Aug 16, 2025 at 13:26

{
    "lastseen": "2025-08-18T21:27:14",
    "description": "# one-java-agent\n![JavaCI](https://github.com/alibaba/one-java-agent/workflows/JavaCI/badge.svg)\n[![maven](https://img.shields.io/maven-central/v/com.alibaba/one-java-agent.svg)](https://search.maven.org/search?q=g:com.alibaba%20AND%20a:one-java-agent*)\n![license](https://img.shields.io/github/license/alibaba/one-java-agent.svg)\n[![Average time to resolve an issue](http://isitmaintained.com/badge/resolution/alibaba/one-java-agent.svg)](http://isitmaintained.com/project/alibaba/one-java-agent \"Average time to resolve an issue\")\n[![Percentage of issues still open](http://isitmaintained.com/badge/open/alibaba/one-java-agent.svg)](http://isitmaintained.com/project/alibaba/one-java-agent \"Percentage of issues still open\")\n\n## \u76ee\u6807\n\n1. \u63d0\u4f9b\u63d2\u4ef6\u5316\u652f\u6301\uff0c\u7edf\u4e00\u7ba1\u7406\u4f17\u591a\u7684Java Agent\n2. \u63d2\u4ef6\u652f\u6301install/unstall\uff0c\u9700\u8981\u63d2\u4ef6\u65b9\u5b9e\u73b0\u63a5\u53e3\n3. \u652f\u6301\u4f20\u7edf\u7684java agent\uff0c\u5373\u5df2\u7ecf\u5f00\u53d1\u597d\u7684java agent\n\n\n## \u63d2\u4ef6\u7cfb\u7edf\n\n\u63d2\u4ef6\u5982\u679c\u5e0c\u671b\u611f\u77e5\u751f\u547d\u5468\u671f\uff0c\u53ef\u4ee5\u5b9e\u73b0 `PluginActivator`\u63a5\u53e3\uff1a\n\n```java\npublic interface PluginActivator {\n    // \u8ba9\u63d2\u4ef6\u672c\u8eab\u5224\u65ad\u662f\u5426\u8981\u542f\u52a8\n    boolean enabled(PluginContext context);\n\n    public void init(PluginContext context) throws Exception;\n\n    /**\n     * Before calling this method, the {@link PluginState} is\n     * {@link PluginState#STARTING}, after calling, the {@link PluginState} is\n     * {@link PluginState#ACTIVE}\n     *\n     * @param context\n     */\n    public void start(PluginContext context) throws Exception;\n\n    /**\n     * Before calling this method, the {@link PluginState} is\n     * {@link PluginState#STOPPING}, after calling, the {@link PluginState} is\n     * {@link PluginState#RESOLVED}\n     *\n     * @param context\n     */\n    public void stop(PluginContext context) throws Exception;\n}\n```\n\n\n\n## \u4f20\u7edf\u7684java agent\n\n\u63d2\u4ef6\u76ee\u5f55\u4e0b\u9762\u653e\u4e00\u4e2a`plugin.properties`\uff0c\u5e76\u4e14\u653e\u4e0a\u539f\u751f\u7684agent jar\u6587\u4ef6\u3002\n\n\u4f8b\u5982\uff1a\n\n```\ntype=traditional\nname=demo-agent\nversion=1.0.0\nagentJarPath=demo-agent.jar\n```\n\n\u5219 one java agent\u4f1a\u542f\u52a8\u8fd9\u4e2a`demo-agent`\u3002\n\n\n## \u7f16\u8bd1\u5f00\u53d1\n\n* \u672c\u9879\u76ee\u4f9d\u8d56 bytekit: https://github.com/alibaba/bytekit \uff0c\u53ef\u80fd\u9700\u8981\u5148`mvn clean install` bytekit\n* \u6267\u884c\u6d4b\u8bd5\uff1a `mvn clean package -DskipTests && mvn test`\n* `mvn clean package -P local -DskipTests`\u4f1a\u6253\u5305\u540e\u5b89\u88c5\u6700\u65b0\u5230\u672c\u5730 `~/oneoneagent` \u76ee\u5f55\u4e0b",
    "published": "2025-08-16T13:26:07",
    "modified": "2025-08-16T13:26:42",
    "type": "githubexploit",
    "title": "Exploit for Path Traversal in Alibabagroup One-Java-Agent",
    "source": "",
    "references": "",
    "id": "91255BC8-23AA-5E69-8182-76128154DDB6",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [
        "CVE-2022-25842"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://github.com/shoucheng3/alibaba__one-java-agent_CVE-2022-25842_0-0-1",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply