Search criteria
13 vulnerabilities
CVE-2022-0486 (GCVE-0-2022-0486)
Vulnerability from cvelistv5 – Published: 2022-05-17 19:32 – Updated: 2024-09-16 16:28
VLAI?
Summary
Improper file permissions in the CommandPost, Collector, Sensor, and Sandbox components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected files and enable escalation of privileges equivalent to the root user. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability.
Severity ?
4.4 (Medium)
CWE
- CWE-276 - Incorrect Default Permissions
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.4.5
(custom)
|
|||||||
|
|||||||||
Credits
Henry Reed, The Aerospace Corporation
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T23:32:46.161Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Henry Reed, The Aerospace Corporation"
}
],
"datePublic": "2022-05-16T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Improper file permissions in the CommandPost, Collector, Sensor, and Sandbox components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected files and enable escalation of privileges equivalent to the root user. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-276",
"description": "CWE-276 Incorrect Default Permissions",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-17T19:32:58",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"solutions": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Privileged Command Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2022-05-16T15:30:00.000Z",
"ID": "CVE-2022-0486",
"STATE": "PUBLIC",
"TITLE": "Privileged Command Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.4.5"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.4.5"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Henry Reed, The Aerospace Corporation"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Improper file permissions in the CommandPost, Collector, Sensor, and Sandbox components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected files and enable escalation of privileges equivalent to the root user. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-276 Incorrect Default Permissions"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411",
"refsource": "CONFIRM",
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
]
},
"solution": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2022-0486",
"datePublished": "2022-05-17T19:32:58.251916Z",
"dateReserved": "2022-02-03T00:00:00",
"dateUpdated": "2024-09-16T16:28:21.139Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-0997 (GCVE-0-2022-0997)
Vulnerability from cvelistv5 – Published: 2022-05-17 19:31 – Updated: 2024-09-17 01:51
VLAI?
Summary
Improper file permissions in the CommandPost, Collector, and Sensor components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected script files, which could result in arbitrary commands being run as root upon subsequent logon by a root user. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability.
Severity ?
CWE
- CWE-276 - Incorrect Default Permissions
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.4.5
(custom)
|
|||||||
|
|||||||||
Credits
Henry Reed, The Aerospace Corporation
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T23:47:43.252Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Henry Reed, The Aerospace Corporation"
}
],
"datePublic": "2022-05-16T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Improper file permissions in the CommandPost, Collector, and Sensor components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected script files, which could result in arbitrary commands being run as root upon subsequent logon by a root user. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-276",
"description": "CWE-276 Incorrect Default Permissions",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-17T19:31:43",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"solutions": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Local Privilege Escalation Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2022-05-16T15:30:00.000Z",
"ID": "CVE-2022-0997",
"STATE": "PUBLIC",
"TITLE": "Local Privilege Escalation Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.4.5"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.4.5"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Henry Reed, The Aerospace Corporation"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Improper file permissions in the CommandPost, Collector, and Sensor components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected script files, which could result in arbitrary commands being run as root upon subsequent logon by a root user. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-276 Incorrect Default Permissions"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411",
"refsource": "CONFIRM",
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
]
},
"solution": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2022-0997",
"datePublished": "2022-05-17T19:31:43.358303Z",
"dateReserved": "2022-03-16T00:00:00",
"dateUpdated": "2024-09-17T01:51:19.514Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24388 (GCVE-0-2022-24388)
Vulnerability from cvelistv5 – Published: 2022-05-17 19:30 – Updated: 2024-09-16 20:17
VLAI?
Summary
Vulnerability in rconfig “date” enables an attacker with user level access to the CLI to inject root level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability.
Severity ?
8.8 (High)
CWE
- CWE-78 - OS Command Injection
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.4.5
(custom)
|
|||||||
|
|||||||||
Credits
Ryan Wincey, Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:07:02.557Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey, Securifera"
}
],
"datePublic": "2022-05-16T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in rconfig \u201cdate\u201d enables an attacker with user level access to the CLI to inject root level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 OS Command Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-17T19:30:26",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"solutions": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Authenticated Privileged Command Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2022-05-16T15:30:00.000Z",
"ID": "CVE-2022-24388",
"STATE": "PUBLIC",
"TITLE": "Authenticated Privileged Command Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.4.5"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.4.5"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey, Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in rconfig \u201cdate\u201d enables an attacker with user level access to the CLI to inject root level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 OS Command Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411",
"refsource": "CONFIRM",
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
]
},
"solution": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2022-24388",
"datePublished": "2022-05-17T19:30:26.070523Z",
"dateReserved": "2022-02-03T00:00:00",
"dateUpdated": "2024-09-16T20:17:22.513Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24389 (GCVE-0-2022-24389)
Vulnerability from cvelistv5 – Published: 2022-05-17 19:28 – Updated: 2024-09-16 18:50
VLAI?
Summary
Vulnerability in rconfig “cert_utils” enables an attacker with user level access to the CLI to inject root level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability.
Severity ?
8.8 (High)
CWE
- CWE-78 - OS Command Injection
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.4.5
(custom)
|
|||||||
|
|||||||||
Credits
Ryan Wincey, Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:07:02.463Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey, Securifera"
}
],
"datePublic": "2022-05-16T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in rconfig \u201ccert_utils\u201d enables an attacker with user level access to the CLI to inject root level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 OS Command Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-17T19:28:43",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"solutions": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Authenticated Privileged Command Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2022-05-16T15:30:00.000Z",
"ID": "CVE-2022-24389",
"STATE": "PUBLIC",
"TITLE": "Authenticated Privileged Command Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.4.5"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.4.5"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey, Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in rconfig \u201ccert_utils\u201d enables an attacker with user level access to the CLI to inject root level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 OS Command Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411",
"refsource": "CONFIRM",
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
]
},
"solution": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2022-24389",
"datePublished": "2022-05-17T19:28:43.842733Z",
"dateReserved": "2022-02-03T00:00:00",
"dateUpdated": "2024-09-16T18:50:26.653Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24390 (GCVE-0-2022-24390)
Vulnerability from cvelistv5 – Published: 2022-05-17 19:27 – Updated: 2024-09-16 16:47
VLAI?
Summary
Vulnerability in rconfig “remote_text_file” enables an attacker with user level access to the CLI to inject user level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability.
Severity ?
8.8 (High)
CWE
- CWE-78 - OS Command Injection
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.4.5
(custom)
|
|||||||
|
|||||||||
Credits
Ryan Wincey, Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:07:02.633Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey, Securifera"
}
],
"datePublic": "2022-05-16T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in rconfig \u201cremote_text_file\u201d enables an attacker with user level access to the CLI to inject user level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 OS Command Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-17T19:27:50",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"solutions": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Authenticated Command Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2022-05-16T15:30:00.000Z",
"ID": "CVE-2022-24390",
"STATE": "PUBLIC",
"TITLE": "Authenticated Command Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.4.5"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.4.5"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey, Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in rconfig \u201cremote_text_file\u201d enables an attacker with user level access to the CLI to inject user level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 OS Command Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411",
"refsource": "CONFIRM",
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
]
},
"solution": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2022-24390",
"datePublished": "2022-05-17T19:27:50.200006Z",
"dateReserved": "2022-02-03T00:00:00",
"dateUpdated": "2024-09-16T16:47:38.074Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24391 (GCVE-0-2022-24391)
Vulnerability from cvelistv5 – Published: 2022-05-17 19:26 – Updated: 2024-09-16 23:26
VLAI?
Summary
Vulnerability in Fidelis Network and Deception CommandPost enables SQL injection through the web interface by an attacker with user level access. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability.
Severity ?
8.8 (High)
CWE
- CWE-89 - SQL Injection
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.4.5
(custom)
|
|||||||
|
|||||||||
Credits
Ryan Wincey, Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:07:02.528Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey, Securifera"
}
],
"datePublic": "2022-05-16T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables SQL injection through the web interface by an attacker with user level access. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-89",
"description": "CWE-89 SQL Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-17T19:26:54",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"solutions": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Authenticated SQL Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2022-05-16T15:30:00.000Z",
"ID": "CVE-2022-24391",
"STATE": "PUBLIC",
"TITLE": "Authenticated SQL Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.4.5"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.4.5"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey, Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables SQL injection through the web interface by an attacker with user level access. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-89 SQL Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411",
"refsource": "CONFIRM",
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
]
},
"solution": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2022-24391",
"datePublished": "2022-05-17T19:26:54.874649Z",
"dateReserved": "2022-02-03T00:00:00",
"dateUpdated": "2024-09-16T23:26:20.130Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24392 (GCVE-0-2022-24392)
Vulnerability from cvelistv5 – Published: 2022-05-17 19:26 – Updated: 2024-09-16 16:12
VLAI?
Summary
Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the “feed_comm_test” value for the “feed” parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response via an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability.
Severity ?
8.8 (High)
CWE
- CWE-78 - OS Command Injection
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.4.5
(custom)
|
|||||||
|
|||||||||
Credits
Ryan Wincey, Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:07:02.600Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey, Securifera"
}
],
"datePublic": "2022-05-16T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the \u201cfeed_comm_test\u201d value for the \u201cfeed\u201d parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response via an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 OS Command Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-17T19:26:01",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"solutions": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Authenticated Command Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2022-05-16T15:30:00.000Z",
"ID": "CVE-2022-24392",
"STATE": "PUBLIC",
"TITLE": "Authenticated Command Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.4.5"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.4.5"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey, Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the \u201cfeed_comm_test\u201d value for the \u201cfeed\u201d parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response via an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 OS Command Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411",
"refsource": "CONFIRM",
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
]
},
"solution": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2022-24392",
"datePublished": "2022-05-17T19:26:01.470821Z",
"dateReserved": "2022-02-03T00:00:00",
"dateUpdated": "2024-09-16T16:12:26.172Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24393 (GCVE-0-2022-24393)
Vulnerability from cvelistv5 – Published: 2022-05-17 19:24 – Updated: 2024-09-16 23:00
VLAI?
Summary
Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the “check_vertica_upgrade” value for the “cpIp” parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response via an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability.
Severity ?
8.8 (High)
CWE
- CWE-78 - OS Command Injection
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.4.5
(custom)
|
|||||||
|
|||||||||
Credits
Ryan Wincey, Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:07:02.426Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey, Securifera"
}
],
"datePublic": "2022-05-16T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the \u201ccheck_vertica_upgrade\u201d value for the \u201ccpIp\u201d parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response via an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 OS Command Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-17T19:24:36",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"solutions": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Authenticated Command Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2022-05-16T15:30:00.000Z",
"ID": "CVE-2022-24393",
"STATE": "PUBLIC",
"TITLE": "Authenticated Command Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.4.5"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.4.5"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey, Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the \u201ccheck_vertica_upgrade\u201d value for the \u201ccpIp\u201d parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response via an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 OS Command Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411",
"refsource": "CONFIRM",
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
]
},
"solution": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2022-24393",
"datePublished": "2022-05-17T19:24:36.438499Z",
"dateReserved": "2022-02-03T00:00:00",
"dateUpdated": "2024-09-16T23:00:32.129Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2022-24394 (GCVE-0-2022-24394)
Vulnerability from cvelistv5 – Published: 2022-05-17 19:22 – Updated: 2024-09-17 03:59
VLAI?
Summary
Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the “update_checkfile” value for the “filename” parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response via an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability.
Severity ?
8.8 (High)
CWE
- CWE-78 - OS Command Injection
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.4.5
(custom)
|
|||||||
|
|||||||||
Credits
Ryan Wincey, Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:07:02.537Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.4.5",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey, Securifera"
}
],
"datePublic": "2022-05-16T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the \u201cupdate_checkfile\u201d value for the \u201cfilename\u201d parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response via an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 OS Command Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-05-17T19:22:26",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
],
"solutions": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Authenticated Command Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2022-05-16T15:30:00.000Z",
"ID": "CVE-2022-24394",
"STATE": "PUBLIC",
"TITLE": "Authenticated Command Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.4.5"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.4.5"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey, Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the \u201cupdate_checkfile\u201d value for the \u201cfilename\u201d parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response via an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.4.5. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 OS Command Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411",
"refsource": "CONFIRM",
"url": "https://fidelissecurity.zendesk.com/hc/en-us/articles/6211730139411"
}
]
},
"solution": [
{
"lang": "en",
"value": "Apply patches or upgrade to latest version"
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2022-24394",
"datePublished": "2022-05-17T19:22:26.993211Z",
"dateReserved": "2022-02-03T00:00:00",
"dateUpdated": "2024-09-17T03:59:09.816Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-35049 (GCVE-0-2021-35049)
Vulnerability from cvelistv5 – Published: 2021-06-25 11:44 – Updated: 2024-09-16 23:10
VLAI?
Summary
Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response in an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.7 and in version 9.4. Patches and updates are available to address this vulnerability.
Severity ?
9.9 (Critical)
CWE
- CWE-89 - SQL Injection
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network 9.4
Affected: Fidelis Network , < 9.3.7 (custom) |
|||||||
|
|||||||||
Credits
Ryan Wincey(@rwincey), Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T00:33:50.630Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"status": "affected",
"version": "Fidelis Network 9.4"
},
{
"lessThan": "9.3.7",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"status": "affected",
"version": "Fidelis Deception 9.4"
},
{
"lessThan": "9.3.7",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey(@rwincey), Securifera"
}
],
"datePublic": "2021-06-18T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response in an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.7 and in version 9.4. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Command Injection"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.9,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-89",
"description": "CWE-89 SQL Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-09-07T18:22:07",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
],
"solutions": [
{
"lang": "en",
"value": "Upgrade to version 9.3.7 or version 9.4.1.\nOr apply patches to version 9.3.6 or version 9.4."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Command Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2021-06-18T21:30:00.000Z",
"ID": "CVE-2021-35049",
"STATE": "PUBLIC",
"TITLE": "Command Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.3.7"
},
{
"platform": "CentOS",
"version_affected": "=",
"version_name": "Fidelis Network",
"version_value": "9.4"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.3.7"
},
{
"platform": "CentOS",
"version_affected": "=",
"version_name": "Fidelis Deception",
"version_value": "9.4"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey(@rwincey), Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and return results in an HTTP response in an authenticated session. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.7 and in version 9.4. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Command Injection"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.9,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-89 SQL Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies",
"refsource": "CONFIRM",
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"name": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/",
"refsource": "MISC",
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
]
},
"solution": [
{
"lang": "en",
"value": "Upgrade to version 9.3.7 or version 9.4.1.\nOr apply patches to version 9.3.6 or version 9.4."
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2021-35049",
"datePublished": "2021-06-25T11:44:45.218211Z",
"dateReserved": "2021-06-18T00:00:00",
"dateUpdated": "2024-09-16T23:10:59.157Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-35050 (GCVE-0-2021-35050)
Vulnerability from cvelistv5 – Published: 2021-06-25 11:44 – Updated: 2024-09-16 16:12
VLAI?
Summary
User credentials stored in a recoverable format within Fidelis Network and Deception CommandPost. In the event that an attacker gains access to the CommandPost, these values could be decoded and used to login to the application. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.3. This vulnerability has been addressed in version 9.3.3 and subsequent versions.
Severity ?
6.5 (Medium)
CWE
- CWE-257 - Storing Passwords in a Recoverable Format
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network , < 9.3.3
(custom)
|
|||||||
|
|||||||||
Credits
Ryan Wincey(@rwincey) & Brandon Peterson(@Barbarisch926), Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T00:33:50.675Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.3.3",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"lessThan": "9.3.3",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey(@rwincey) \u0026 Brandon Peterson(@Barbarisch926), Securifera"
}
],
"datePublic": "2021-06-18T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "User credentials stored in a recoverable format within Fidelis Network and Deception CommandPost. In the event that an attacker gains access to the CommandPost, these values could be decoded and used to login to the application. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.3. This vulnerability has been addressed in version 9.3.3 and subsequent versions."
}
],
"exploits": [
{
"lang": "en",
"value": "Command Injection"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-257",
"description": "CWE-257 Storing Passwords in a Recoverable Format",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-09-07T18:22:13",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
],
"solutions": [
{
"lang": "en",
"value": "Upgrade to version 9.3.7 or version 9.4.1.\nOr apply patches to version 9.3.6 or version 9.4."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "User Credentials Stored in a Recoverable Format within Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2021-06-18T21:30:00.000Z",
"ID": "CVE-2021-35050",
"STATE": "PUBLIC",
"TITLE": "User Credentials Stored in a Recoverable Format within Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.3.3"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.3.3"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey(@rwincey) \u0026 Brandon Peterson(@Barbarisch926), Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "User credentials stored in a recoverable format within Fidelis Network and Deception CommandPost. In the event that an attacker gains access to the CommandPost, these values could be decoded and used to login to the application. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.3. This vulnerability has been addressed in version 9.3.3 and subsequent versions."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Command Injection"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-257 Storing Passwords in a Recoverable Format"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies",
"refsource": "CONFIRM",
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"name": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/",
"refsource": "MISC",
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
]
},
"solution": [
{
"lang": "en",
"value": "Upgrade to version 9.3.7 or version 9.4.1.\nOr apply patches to version 9.3.6 or version 9.4."
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2021-35050",
"datePublished": "2021-06-25T11:44:36.530189Z",
"dateReserved": "2021-06-18T00:00:00",
"dateUpdated": "2024-09-16T16:12:29.280Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-35047 (GCVE-0-2021-35047)
Vulnerability from cvelistv5 – Published: 2021-06-25 11:44 – Updated: 2024-09-16 20:41
VLAI?
Summary
Vulnerability in the CommandPost, Collector, and Sensor components of Fidelis Network and Deception enables an attacker with user level access to the CLI to inject root level commands into the component and neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.7 and in version 9.4. Patches and updates are available to address this vulnerability.
Severity ?
9.9 (Critical)
CWE
- CWE-78 - OS Command Injection
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network 9.4
Affected: Fidelis Network , < 9.3.7 (custom) |
|||||||
|
|||||||||
Credits
Ryan Wincey(@rwincey) & Brandon Peterson(@Barbarisch926), Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T00:33:50.508Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"status": "affected",
"version": "Fidelis Network 9.4"
},
{
"lessThan": "9.3.7",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"status": "affected",
"version": "Fidelis Deception 9.4"
},
{
"lessThan": "9.3.7",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey(@rwincey) \u0026 Brandon Peterson(@Barbarisch926), Securifera"
}
],
"datePublic": "2021-06-18T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in the CommandPost, Collector, and Sensor components of Fidelis Network and Deception enables an attacker with user level access to the CLI to inject root level commands into the component and neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.7 and in version 9.4. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "Root level access"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.9,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 OS Command Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-09-07T18:21:44",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
],
"solutions": [
{
"lang": "en",
"value": "Upgrade to version 9.3.7 or version 9.4.1.\nOr apply patches to version 9.3.6 or version 9.4."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Privileged Command Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2021-06-18T21:30:00.000Z",
"ID": "CVE-2021-35047",
"STATE": "PUBLIC",
"TITLE": "Privileged Command Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.3.7"
},
{
"platform": "CentOS",
"version_affected": "=",
"version_name": "Fidelis Network",
"version_value": "9.4"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.3.7"
},
{
"platform": "CentOS",
"version_affected": "=",
"version_name": "Fidelis Deception",
"version_value": "9.4"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey(@rwincey) \u0026 Brandon Peterson(@Barbarisch926), Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in the CommandPost, Collector, and Sensor components of Fidelis Network and Deception enables an attacker with user level access to the CLI to inject root level commands into the component and neighboring Fidelis components. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.7 and in version 9.4. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "Root level access"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.9,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 OS Command Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies",
"refsource": "CONFIRM",
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"name": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/",
"refsource": "MISC",
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
]
},
"solution": [
{
"lang": "en",
"value": "Upgrade to version 9.3.7 or version 9.4.1.\nOr apply patches to version 9.3.6 or version 9.4."
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2021-35047",
"datePublished": "2021-06-25T11:44:30.916514Z",
"dateReserved": "2021-06-18T00:00:00",
"dateUpdated": "2024-09-16T20:41:47.623Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-35048 (GCVE-0-2021-35048)
Vulnerability from cvelistv5 – Published: 2021-06-25 11:44 – Updated: 2024-09-17 02:46
VLAI?
Summary
Vulnerability in Fidelis Network and Deception CommandPost enables unauthenticated SQL injection through the web interface. The vulnerability could lead to exposure of authentication tokens in some versions of Fidelis software. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.7 and in version 9.4. Patches and updates are available to address this vulnerability.
Severity ?
9.8 (Critical)
CWE
- CWE-89 - SQL Injection
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Fidelis Cybersecurity | Fidelis Network |
Affected:
Fidelis Network 9.4
Affected: Fidelis Network , < 9.3.7 (custom) |
|||||||
|
|||||||||
Credits
Ryan Wincey(@rwincey), Securifera
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T00:33:50.936Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"platforms": [
"CentOS"
],
"product": "Fidelis Network",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"status": "affected",
"version": "Fidelis Network 9.4"
},
{
"lessThan": "9.3.7",
"status": "affected",
"version": "Fidelis Network",
"versionType": "custom"
}
]
},
{
"platforms": [
"CentOS"
],
"product": "Fidelis Deception",
"vendor": "Fidelis Cybersecurity",
"versions": [
{
"status": "affected",
"version": "Fidelis Deception 9.4"
},
{
"lessThan": "9.3.7",
"status": "affected",
"version": "Fidelis Deception",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ryan Wincey(@rwincey), Securifera"
}
],
"datePublic": "2021-06-18T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables unauthenticated SQL injection through the web interface. The vulnerability could lead to exposure of authentication tokens in some versions of Fidelis software. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.7 and in version 9.4. Patches and updates are available to address this vulnerability."
}
],
"exploits": [
{
"lang": "en",
"value": "SQL Injection"
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-89",
"description": "CWE-89 SQL Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-09-07T18:21:54",
"orgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"shortName": "Fidelis"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
],
"solutions": [
{
"lang": "en",
"value": "Upgrade to version 9.3.7 or version 9.4.1.\nOr apply patches to version 9.3.6 or version 9.4."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Unauthenticated SQL Injection Vulnerability in Fidelis Network and Deception",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@fidelissecurity.com",
"DATE_PUBLIC": "2021-06-18T21:30:00.000Z",
"ID": "CVE-2021-35048",
"STATE": "PUBLIC",
"TITLE": "Unauthenticated SQL Injection Vulnerability in Fidelis Network and Deception"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Fidelis Network",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Network",
"version_value": "9.3.7"
},
{
"platform": "CentOS",
"version_affected": "=",
"version_name": "Fidelis Network",
"version_value": "9.4"
}
]
}
},
{
"product_name": "Fidelis Deception",
"version": {
"version_data": [
{
"platform": "CentOS",
"version_affected": "\u003c",
"version_name": "Fidelis Deception",
"version_value": "9.3.7"
},
{
"platform": "CentOS",
"version_affected": "=",
"version_name": "Fidelis Deception",
"version_value": "9.4"
}
]
}
}
]
},
"vendor_name": "Fidelis Cybersecurity"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ryan Wincey(@rwincey), Securifera"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Vulnerability in Fidelis Network and Deception CommandPost enables unauthenticated SQL injection through the web interface. The vulnerability could lead to exposure of authentication tokens in some versions of Fidelis software. The vulnerability is present in Fidelis Network and Deception versions prior to 9.3.7 and in version 9.4. Patches and updates are available to address this vulnerability."
}
]
},
"exploit": [
{
"lang": "en",
"value": "SQL Injection"
}
],
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-89 SQL Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies",
"refsource": "CONFIRM",
"url": "https://support.fidelissecurity.com/hc/en-us/categories/360001842694-Advisories-News-and-Policies"
},
{
"name": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/",
"refsource": "MISC",
"url": "https://www.securifera.com/blog/2021/06/24/operation-eagle-eye/"
}
]
},
"solution": [
{
"lang": "en",
"value": "Upgrade to version 9.3.7 or version 9.4.1.\nOr apply patches to version 9.3.6 or version 9.4."
}
],
"source": {
"discovery": "EXTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "11ea3a0d-87b4-4e67-a1fa-f5a6be5d6676",
"assignerShortName": "Fidelis",
"cveId": "CVE-2021-35048",
"datePublished": "2021-06-25T11:44:25.422784Z",
"dateReserved": "2021-06-18T00:00:00",
"dateUpdated": "2024-09-17T02:46:55.900Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}