cnvd - cnvd-2017-32275

CNVD-2017-32275

Vulnerability from cnvd - Published: 2017-11-01

Title

Cisco Cloud Services Platform未授权访问漏洞

Description

Cloud Services Platform 2100是数据中心网络功能虚拟化的统一的优化x86软件及硬件平台。 Cisco Cloud Services Platform (CSP) 2100运行时，Web控制台的实现上存在安全漏洞，可使经身份验证的远程攻击者在受影响 CSP设备上与服务或虚拟机恶意交互。

Severity

高

Patch Name

Cisco Cloud Services Platform未授权访问漏洞的补丁

Patch Description

Cloud Services Platform 2100是数据中心网络功能虚拟化的统一的优化x86软件及硬件平台。 Cisco Cloud Services Platform (CSP) 2100运行时，Web控制台的实现上存在安全漏洞，可使经身份验证的远程攻击者在受影响 CSP设备上与服务或虚拟机恶意交互。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-ccs

Reference

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-ccs http://www.securityfocus.com/bid/101487

Impacted products

Name
['Cisco Cloud Services Platform (CSP) 2100 2.1', 'Cisco Cloud Services Platform (CSP) 2100 2.1.1', 'Cisco Cloud Services Platform (CSP) 2100 2.1.2', 'Cisco Cloud Services Platform (CSP) 2100 2.2', 'Cisco Cloud Services Platform (CSP) 2100 2.2(0)', 'Cisco Cloud Services Platform (CSP) 2100 2.2(2)', 'Cisco Cloud Services Platform (CSP) 2100 2.2.1', 'Cisco Cloud Services Platform (CSP) 2100 2.2.2']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "101487"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-12251"
    }
  },
  "description": "Cloud Services Platform 2100\u662f\u6570\u636e\u4e2d\u5fc3\u7f51\u7edc\u529f\u80fd\u865a\u62df\u5316\u7684\u7edf\u4e00\u7684\u4f18\u5316x86\u8f6f\u4ef6\u53ca\u786c\u4ef6\u5e73\u53f0\u3002\r\n\r\nCisco Cloud Services Platform (CSP) 2100\u8fd0\u884c\u65f6\uff0cWeb\u63a7\u5236\u53f0\u7684\u5b9e\u73b0\u4e0a\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u53ef\u4f7f\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u653b\u51fb\u8005\u5728\u53d7\u5f71\u54cd CSP\u8bbe\u5907\u4e0a\u4e0e\u670d\u52a1\u6216\u865a\u62df\u673a\u6076\u610f\u4ea4\u4e92\u3002",
  "discovererName": "Chris Day",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-ccs",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-32275",
  "openTime": "2017-11-01",
  "patchDescription": "Cloud Services Platform 2100\u662f\u6570\u636e\u4e2d\u5fc3\u7f51\u7edc\u529f\u80fd\u865a\u62df\u5316\u7684\u7edf\u4e00\u7684\u4f18\u5316x86\u8f6f\u4ef6\u53ca\u786c\u4ef6\u5e73\u53f0\u3002\r\n\r\nCisco Cloud Services Platform (CSP) 2100\u8fd0\u884c\u65f6\uff0cWeb\u63a7\u5236\u53f0\u7684\u5b9e\u73b0\u4e0a\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u53ef\u4f7f\u7ecf\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u653b\u51fb\u8005\u5728\u53d7\u5f71\u54cd CSP\u8bbe\u5907\u4e0a\u4e0e\u670d\u52a1\u6216\u865a\u62df\u673a\u6076\u610f\u4ea4\u4e92\u3002\r\n\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Cloud Services Platform\u672a\u6388\u6743\u8bbf\u95ee\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco Cloud Services Platform (CSP) 2100 2.1",
      "Cisco Cloud Services Platform (CSP) 2100 2.1.1",
      "Cisco Cloud Services Platform (CSP) 2100 2.1.2",
      "Cisco Cloud Services Platform (CSP) 2100 2.2",
      "Cisco Cloud Services Platform (CSP) 2100 2.2(0)",
      "Cisco Cloud Services Platform (CSP) 2100 2.2(2)",
      "Cisco Cloud Services Platform (CSP) 2100 2.2.1",
      "Cisco Cloud Services Platform (CSP) 2100 2.2.2"
    ]
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-ccs\r\nhttp://www.securityfocus.com/bid/101487",
  "serverity": "\u9ad8",
  "submitTime": "2017-10-19",
  "title": "Cisco Cloud Services Platform\u672a\u6388\u6743\u8bbf\u95ee\u6f0f\u6d1e"
}

CVE-2017-12251 (GCVE-0-2017-12251)

Vulnerability from cvelistv5 – Published: 2017-10-19 08:00 – Updated: 2024-08-05 18:28

Summary

A vulnerability in the web console of the Cisco Cloud Services Platform (CSP) 2100 could allow an authenticated, remote attacker to interact maliciously with the services or virtual machines (VMs) operating remotely on an affected CSP device. The vulnerability is due to weaknesses in the generation of certain authentication mechanisms in the URL of the web console. An attacker could exploit this vulnerability by browsing to one of the hosted VMs' URLs in Cisco CSP and viewing specific patterns that control the web application's mechanisms for authentication control. An exploit could allow the attacker to access a specific VM on the CSP, which causes a complete loss of the system's confidentiality, integrity, and availability. This vulnerability affects Cisco Cloud Services Platform (CSP) 2100 running software release 2.1.0, 2.1.1, 2.1.2, 2.2.0, 2.2.1, or 2.2.2. Cisco Bug IDs: CSCve64690.

Severity ?

No CVSS data available.

CWE

CWE-264

Assigner

cisco

References

URL

Tags

	https://tools.cisco.com/security/center/content/C…	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/101487	vdb-entryx_refsource_BID
	http://www.securitytracker.com/id/1039613	vdb-entryx_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	n/a	Cisco Cloud Services Platform 2100	Affected: Cisco Cloud Services Platform 2100

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T18:28:16.707Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-ccs"
          },
          {
            "name": "101487",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/101487"
          },
          {
            "name": "1039613",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039613"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Cloud Services Platform 2100",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cisco Cloud Services Platform 2100"
            }
          ]
        }
      ],
      "datePublic": "2017-10-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the web console of the Cisco Cloud Services Platform (CSP) 2100 could allow an authenticated, remote attacker to interact maliciously with the services or virtual machines (VMs) operating remotely on an affected CSP device. The vulnerability is due to weaknesses in the generation of certain authentication mechanisms in the URL of the web console. An attacker could exploit this vulnerability by browsing to one of the hosted VMs\u0027 URLs in Cisco CSP and viewing specific patterns that control the web application\u0027s mechanisms for authentication control. An exploit could allow the attacker to access a specific VM on the CSP, which causes a complete loss of the system\u0027s confidentiality, integrity, and availability. This vulnerability affects Cisco Cloud Services Platform (CSP) 2100 running software release 2.1.0, 2.1.1, 2.1.2, 2.2.0, 2.2.1, or 2.2.2. Cisco Bug IDs: CSCve64690."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-264",
              "description": "CWE-264",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-10-19T09:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-ccs"
        },
        {
          "name": "101487",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/101487"
        },
        {
          "name": "1039613",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039613"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2017-12251",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco Cloud Services Platform 2100",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cisco Cloud Services Platform 2100"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in the web console of the Cisco Cloud Services Platform (CSP) 2100 could allow an authenticated, remote attacker to interact maliciously with the services or virtual machines (VMs) operating remotely on an affected CSP device. The vulnerability is due to weaknesses in the generation of certain authentication mechanisms in the URL of the web console. An attacker could exploit this vulnerability by browsing to one of the hosted VMs\u0027 URLs in Cisco CSP and viewing specific patterns that control the web application\u0027s mechanisms for authentication control. An exploit could allow the attacker to access a specific VM on the CSP, which causes a complete loss of the system\u0027s confidentiality, integrity, and availability. This vulnerability affects Cisco Cloud Services Platform (CSP) 2100 running software release 2.1.0, 2.1.1, 2.1.2, 2.2.0, 2.2.1, or 2.2.2. Cisco Bug IDs: CSCve64690."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-264"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-ccs",
              "refsource": "CONFIRM",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-ccs"
            },
            {
              "name": "101487",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/101487"
            },
            {
              "name": "1039613",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039613"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2017-12251",
    "datePublished": "2017-10-19T08:00:00",
    "dateReserved": "2017-08-03T00:00:00",
    "dateUpdated": "2024-08-05T18:28:16.707Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-32275

CVE-2017-12251 (GCVE-0-2017-12251)

Tags

Sightings

Nomenclature