cnvd - cnvd-2017-16376

CNVD-2017-16376

Vulnerability from cnvd - Published: 2017-07-25

Title

多款Pivotal产品会话固定漏洞

Description

Cloud Foundry是开源的云计算机平台。UAA是用户认证模块，是一个Java Spring项目。多款Pivotal产品存在会话固定漏洞。攻击者可以劫持任意会话，并获得未经授权的访问受影响的应用程序。

Severity

中

Patch Name

多款Pivotal产品会话固定漏洞的补丁

Patch Description

Cloud Foundry是开源的云计算机平台。UAA是用户认证模块，是一个Java Spring项目。多款Pivotal产品存在会话固定漏洞。攻击者可以劫持任意会话，并获得未经授权的访问受影响的应用程序。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下供应商提供的安全公告获得补丁信息： https://www.cloudfoundry.org/cve-2017-4963/

Reference

http://www.securityfocus.com/bid/99251

Impacted products

Name
['Pivotal Software Cloud Foundry 252', 'Pivotal Software Cloud Foundry UAA 3.11', 'Pivotal Software Cloud Foundry UAA 3.0', 'Pivotal Software Cloud Foundry UAA 2.0', 'Pivotal Software Cloud Foundry UAA 2.7.4.12', 'Pivotal Software Cloud Foundry UAA BOSH 26']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": [
      {
        "cveNumber": "CVE-2017-4963"
      },
      {
        "cveNumber": "99251"
      }
    ]
  },
  "description": "Cloud Foundry\u662f\u5f00\u6e90\u7684\u4e91\u8ba1\u7b97\u673a\u5e73\u53f0\u3002UAA\u662f\u7528\u6237\u8ba4\u8bc1\u6a21\u5757\uff0c\u662f\u4e00\u4e2aJava Spring\u9879\u76ee\u3002\r\n\r\n\u591a\u6b3ePivotal\u4ea7\u54c1\u5b58\u5728\u4f1a\u8bdd\u56fa\u5b9a\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u52ab\u6301\u4efb\u610f\u4f1a\u8bdd\uff0c\u5e76\u83b7\u5f97\u672a\u7ecf\u6388\u6743\u7684\u8bbf\u95ee\u53d7\u5f71\u54cd\u7684\u5e94\u7528\u7a0b\u5e8f\u3002",
  "discovererName": "GE Digital Security Team.",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://www.cloudfoundry.org/cve-2017-4963/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-16376",
  "openTime": "2017-07-25",
  "patchDescription": "Cloud Foundry\u662f\u5f00\u6e90\u7684\u4e91\u8ba1\u7b97\u673a\u5e73\u53f0\u3002UAA\u662f\u7528\u6237\u8ba4\u8bc1\u6a21\u5757\uff0c\u662f\u4e00\u4e2aJava Spring\u9879\u76ee\u3002\r\n\r\n\u591a\u6b3ePivotal\u4ea7\u54c1\u5b58\u5728\u4f1a\u8bdd\u56fa\u5b9a\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u52ab\u6301\u4efb\u610f\u4f1a\u8bdd\uff0c\u5e76\u83b7\u5f97\u672a\u7ecf\u6388\u6743\u7684\u8bbf\u95ee\u53d7\u5f71\u54cd\u7684\u5e94\u7528\u7a0b\u5e8f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3ePivotal\u4ea7\u54c1\u4f1a\u8bdd\u56fa\u5b9a\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Pivotal Software Cloud Foundry 252",
      "Pivotal Software Cloud Foundry UAA 3.11",
      "Pivotal Software Cloud Foundry UAA  3.0",
      "Pivotal Software Cloud Foundry UAA  2.0",
      "Pivotal Software Cloud Foundry UAA  2.7.4.12",
      "Pivotal Software Cloud Foundry UAA BOSH 26"
    ]
  },
  "referenceLink": "http://www.securityfocus.com/bid/99251",
  "serverity": "\u4e2d",
  "submitTime": "2017-06-29",
  "title": "\u591a\u6b3ePivotal\u4ea7\u54c1\u4f1a\u8bdd\u56fa\u5b9a\u6f0f\u6d1e"
}

CVE-2017-4963 (GCVE-0-2017-4963)

Vulnerability from cvelistv5 – Published: 2017-06-13 06:00 – Updated: 2024-08-05 14:47

Summary

An issue was discovered in Cloud Foundry Foundation Cloud Foundry release v252 and earlier versions, UAA stand-alone release v2.0.0 - v2.7.4.12 & v3.0.0 - v3.11.0, and UAA bosh release v26 & earlier versions. UAA is vulnerable to session fixation when configured to authenticate against external SAML or OpenID Connect based identity providers.

Severity ?

No CVSS data available.

CWE

Session Fixation for UAA External Authentication

Assigner

dell

References

URL

Tags

https://www.cloudfoundry.org/cve-2017-4963/

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	Cloud Foundry Foundation	Affected: Cloud Foundry Foundation

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:47:43.348Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.cloudfoundry.org/cve-2017-4963/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cloud Foundry Foundation",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cloud Foundry Foundation"
            }
          ]
        }
      ],
      "datePublic": "2017-06-12T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in Cloud Foundry Foundation Cloud Foundry release v252 and earlier versions, UAA stand-alone release v2.0.0 - v2.7.4.12 \u0026 v3.0.0 - v3.11.0, and UAA bosh release v26 \u0026 earlier versions. UAA is vulnerable to session fixation when configured to authenticate against external SAML or OpenID Connect based identity providers."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Session Fixation for UAA External Authentication",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-06-13T05:57:01",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.cloudfoundry.org/cve-2017-4963/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security_alert@emc.com",
          "ID": "CVE-2017-4963",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cloud Foundry Foundation",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cloud Foundry Foundation"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue was discovered in Cloud Foundry Foundation Cloud Foundry release v252 and earlier versions, UAA stand-alone release v2.0.0 - v2.7.4.12 \u0026 v3.0.0 - v3.11.0, and UAA bosh release v26 \u0026 earlier versions. UAA is vulnerable to session fixation when configured to authenticate against external SAML or OpenID Connect based identity providers."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Session Fixation for UAA External Authentication"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.cloudfoundry.org/cve-2017-4963/",
              "refsource": "CONFIRM",
              "url": "https://www.cloudfoundry.org/cve-2017-4963/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2017-4963",
    "datePublished": "2017-06-13T06:00:00",
    "dateReserved": "2016-12-29T00:00:00",
    "dateUpdated": "2024-08-05T14:47:43.348Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-16376

CVE-2017-4963 (GCVE-0-2017-4963)

Tags

Sightings

Nomenclature