cnvd - cnvd-2017-22160

CNVD-2017-22160

Vulnerability from cnvd - Published: 2017-08-21

Title

多款Cisco产品SNMP polling信息泄露漏洞

Description

Cisco Web Security Appliance（WSA）、Email Security Appliance（ESA）和Content Security Management Appliance（SMA）都是美国思科（Cisco）公司的产品。Cisco WSA是一套Web安全设备。ESA是一套电子邮件安全设备。Content SMA是一套内容安全管理设备。SNMP polling是其中的一个网络管理轮询（CPU决策如何提供周边设备服务的方式）组件。多款Cisco产品中的SNMP polling存在信息泄露漏洞。远程攻击者可通过发送特制的SNMP轮询请求利用该漏洞获取证书信息。

Severity

中

Patch Name

多款Cisco产品SNMP polling信息泄露漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-csa

Reference

https://nvd.nist.gov/vuln/detail/CVE-2017-6783

Impacted products

Name
['Cisco Web Security Appliance (WSA) 10.0.0-230', 'Cisco Email Security Appliance (ESA) 9.7.2-065', 'Cisco Content Security Management Appliance (SMA) 10.1.0-037']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-6783"
    }
  },
  "description": "Cisco Web Security Appliance\uff08WSA\uff09\u3001Email Security Appliance\uff08ESA\uff09\u548cContent Security Management Appliance\uff08SMA\uff09\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Cisco WSA\u662f\u4e00\u5957Web\u5b89\u5168\u8bbe\u5907\u3002ESA\u662f\u4e00\u5957\u7535\u5b50\u90ae\u4ef6\u5b89\u5168\u8bbe\u5907\u3002Content SMA\u662f\u4e00\u5957\u5185\u5bb9\u5b89\u5168\u7ba1\u7406\u8bbe\u5907\u3002SNMP polling\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u7f51\u7edc\u7ba1\u7406\u8f6e\u8be2\uff08CPU\u51b3\u7b56\u5982\u4f55\u63d0\u4f9b\u5468\u8fb9\u8bbe\u5907\u670d\u52a1\u7684\u65b9\u5f0f\uff09\u7ec4\u4ef6\u3002\r\n\r\n\u591a\u6b3eCisco\u4ea7\u54c1\u4e2d\u7684SNMP polling\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684SNMP\u8f6e\u8be2\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u8bc1\u4e66\u4fe1\u606f\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-csa",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-22160",
  "openTime": "2017-08-21",
  "patchDescription": "Cisco Web Security Appliance\uff08WSA\uff09\u3001Email Security Appliance\uff08ESA\uff09\u548cContent Security Management Appliance\uff08SMA\uff09\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Cisco WSA\u662f\u4e00\u5957Web\u5b89\u5168\u8bbe\u5907\u3002ESA\u662f\u4e00\u5957\u7535\u5b50\u90ae\u4ef6\u5b89\u5168\u8bbe\u5907\u3002Content SMA\u662f\u4e00\u5957\u5185\u5bb9\u5b89\u5168\u7ba1\u7406\u8bbe\u5907\u3002SNMP polling\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u7f51\u7edc\u7ba1\u7406\u8f6e\u8be2\uff08CPU\u51b3\u7b56\u5982\u4f55\u63d0\u4f9b\u5468\u8fb9\u8bbe\u5907\u670d\u52a1\u7684\u65b9\u5f0f\uff09\u7ec4\u4ef6\u3002\r\n\r\n\u591a\u6b3eCisco\u4ea7\u54c1\u4e2d\u7684SNMP polling\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684SNMP\u8f6e\u8be2\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u8bc1\u4e66\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3eCisco\u4ea7\u54c1SNMP polling\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco Web Security Appliance (WSA) 10.0.0-230",
      "Cisco Email Security Appliance (ESA) 9.7.2-065",
      "Cisco Content Security Management Appliance (SMA) 10.1.0-037"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2017-6783",
  "serverity": "\u4e2d",
  "submitTime": "2017-08-18",
  "title": "\u591a\u6b3eCisco\u4ea7\u54c1SNMP polling\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2017-6783 (GCVE-0-2017-6783)

Vulnerability from cvelistv5 – Published: 2017-08-17 20:00 – Updated: 2024-09-16 19:14

Summary

A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to discover confidential information about the appliances that should be available only to an administrative user. The vulnerability occurs because the appliances do not protect confidential information at rest in response to Simple Network Management Protocol (SNMP) poll requests. An attacker could exploit this vulnerability by doing a crafted SNMP poll request to the targeted security appliance. An exploit could allow the attacker to discover confidential information that should be restricted, and the attacker could use this information to conduct additional reconnaissance. The attacker must know the configured SNMP community string to exploit this vulnerability. Cisco Bug IDs: CSCve26106, CSCve26202, CSCve26224. Known Affected Releases: 10.0.0-230 (Web Security Appliance), 9.7.2-065 (Email Security Appliance), and 10.1.0-037 (Content Security Management Appliance).

Severity ?

No CVSS data available.

CWE

Information Disclosure

Assigner

cisco

References

URL

Tags

	http://www.securitytracker.com/id/1039187	vdb-entryx_refsource_SECTRACK
	http://www.securityfocus.com/bid/100387	vdb-entryx_refsource_BID
	http://www.securitytracker.com/id/1039186	vdb-entryx_refsource_SECTRACK
	https://tools.cisco.com/security/center/content/C…	vendor-advisoryx_refsource_CISCO
	http://www.securitytracker.com/id/1039188	vdb-entryx_refsource_SECTRACK

Impacted products

Vendor

Product

Version

Cisco Systems, Inc.

Web Security Appliance (WSA)

Affected: 10.0.0-230

	Cisco Systems, Inc.	Email Security Appliance (ESA)	Affected: 9.7.2-065
	Cisco Systems, Inc.	Content Security Management Appliance (SMA)	Affected: 10.1.0-037

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T15:41:17.252Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1039187",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039187"
          },
          {
            "name": "100387",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/100387"
          },
          {
            "name": "1039186",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039186"
          },
          {
            "name": "20170816 Cisco Security Appliances SNMP Polling Information Disclosure Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-csa"
          },
          {
            "name": "1039188",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039188"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Web Security Appliance (WSA)",
          "vendor": "Cisco Systems, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "10.0.0-230"
            }
          ]
        },
        {
          "product": "Email Security Appliance (ESA)",
          "vendor": "Cisco Systems, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "9.7.2-065"
            }
          ]
        },
        {
          "product": "Content Security Management Appliance (SMA)",
          "vendor": "Cisco Systems, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "10.1.0-037"
            }
          ]
        }
      ],
      "datePublic": "2017-08-16T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to discover confidential information about the appliances that should be available only to an administrative user. The vulnerability occurs because the appliances do not protect confidential information at rest in response to Simple Network Management Protocol (SNMP) poll requests. An attacker could exploit this vulnerability by doing a crafted SNMP poll request to the targeted security appliance. An exploit could allow the attacker to discover confidential information that should be restricted, and the attacker could use this information to conduct additional reconnaissance. The attacker must know the configured SNMP community string to exploit this vulnerability. Cisco Bug IDs: CSCve26106, CSCve26202, CSCve26224. Known Affected Releases: 10.0.0-230 (Web Security Appliance), 9.7.2-065 (Email Security Appliance), and 10.1.0-037 (Content Security Management Appliance)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information Disclosure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-18T09:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "1039187",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039187"
        },
        {
          "name": "100387",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/100387"
        },
        {
          "name": "1039186",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039186"
        },
        {
          "name": "20170816 Cisco Security Appliances SNMP Polling Information Disclosure Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-csa"
        },
        {
          "name": "1039188",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039188"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "DATE_PUBLIC": "2017-08-16T00:00:00",
          "ID": "CVE-2017-6783",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Web Security Appliance (WSA)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "10.0.0-230"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Email Security Appliance (ESA)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "9.7.2-065"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Content Security Management Appliance (SMA)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "10.1.0-037"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Cisco Systems, Inc."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to discover confidential information about the appliances that should be available only to an administrative user. The vulnerability occurs because the appliances do not protect confidential information at rest in response to Simple Network Management Protocol (SNMP) poll requests. An attacker could exploit this vulnerability by doing a crafted SNMP poll request to the targeted security appliance. An exploit could allow the attacker to discover confidential information that should be restricted, and the attacker could use this information to conduct additional reconnaissance. The attacker must know the configured SNMP community string to exploit this vulnerability. Cisco Bug IDs: CSCve26106, CSCve26202, CSCve26224. Known Affected Releases: 10.0.0-230 (Web Security Appliance), 9.7.2-065 (Email Security Appliance), and 10.1.0-037 (Content Security Management Appliance)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Information Disclosure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1039187",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039187"
            },
            {
              "name": "100387",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/100387"
            },
            {
              "name": "1039186",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039186"
            },
            {
              "name": "20170816 Cisco Security Appliances SNMP Polling Information Disclosure Vulnerability",
              "refsource": "CISCO",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-csa"
            },
            {
              "name": "1039188",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039188"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2017-6783",
    "datePublished": "2017-08-17T20:00:00Z",
    "dateReserved": "2017-03-09T00:00:00",
    "dateUpdated": "2024-09-16T19:14:34.884Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-22160

CVE-2017-6783 (GCVE-0-2017-6783)

Tags

Sightings

Nomenclature