cnvd - cnvd-2018-11035

CNVD-2018-11035

Vulnerability from cnvd - Published: 2018-06-06

Title

OpenDaylight Controller SQL注入漏洞

Description

Opendaylight是美国Linux基金会的一个项目，是一套以社区为主导的开源软件定义网络框架，它包含一套模块合集，能够执行需要快速完成的网络任务。Controller是其中的一个控制器。 OpenDaylight Controller中存在SQL注入漏洞。远程攻击者可利用该漏洞控制应用程序，访问或修改数据并利用底层数据库中的潜在的漏洞。

Severity

高

Formal description

目前厂商暂未发布修复措施解决此安全问题，建议使用此软件的用户随时关注厂商主页或参考网址以获取解决办法： https://www.opendaylight.org/

Reference

http://www.securityfocus.com/bid/104238

Impacted products

Name
OpenDaylight Controller

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "104238"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-1132"
    }
  },
  "description": "Opendaylight\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u7684\u4e00\u4e2a\u9879\u76ee\uff0c\u662f\u4e00\u5957\u4ee5\u793e\u533a\u4e3a\u4e3b\u5bfc\u7684\u5f00\u6e90\u8f6f\u4ef6\u5b9a\u4e49\u7f51\u7edc\u6846\u67b6\uff0c\u5b83\u5305\u542b\u4e00\u5957\u6a21\u5757\u5408\u96c6\uff0c\u80fd\u591f\u6267\u884c\u9700\u8981\u5feb\u901f\u5b8c\u6210\u7684\u7f51\u7edc\u4efb\u52a1\u3002Controller\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u63a7\u5236\u5668\u3002\r\n\r\nOpenDaylight Controller\u4e2d\u5b58\u5728SQL\u6ce8\u5165\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63a7\u5236\u5e94\u7528\u7a0b\u5e8f\uff0c\u8bbf\u95ee\u6216\u4fee\u6539\u6570\u636e\u5e76\u5229\u7528\u5e95\u5c42\u6570\u636e\u5e93\u4e2d\u7684\u6f5c\u5728\u7684\u6f0f\u6d1e\u3002",
  "discovererName": "Feng Xiao and Jianwei Huang of Wuhan University.",
  "formalWay": "\u76ee\u524d\u5382\u5546\u6682\u672a\u53d1\u5e03\u4fee\u590d\u63aa\u65bd\u89e3\u51b3\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u5efa\u8bae\u4f7f\u7528\u6b64\u8f6f\u4ef6\u7684\u7528\u6237\u968f\u65f6\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u6216\u53c2\u8003\u7f51\u5740\u4ee5\u83b7\u53d6\u89e3\u51b3\u529e\u6cd5\uff1a\r\nhttps://www.opendaylight.org/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-11035",
  "openTime": "2018-06-06",
  "products": {
    "product": "OpenDaylight Controller"
  },
  "referenceLink": "http://www.securityfocus.com/bid/104238",
  "serverity": "\u9ad8",
  "submitTime": "2018-06-05",
  "title": "OpenDaylight Controller SQL\u6ce8\u5165\u6f0f\u6d1e"
}

CVE-2018-1132 (GCVE-0-2018-1132)

Vulnerability from cvelistv5 – Published: 2018-06-20 13:00 – Updated: 2024-08-05 03:51

Summary

A flaw was found in Opendaylight's SDNInterfaceapp (SDNI). Attackers can SQL inject the component's database (SQLite) without authenticating to the controller or SDNInterfaceapp. SDNInterface has been deprecated in OpenDayLight since it was last used in the final Carbon series release. In addition to the component not being included in OpenDayLight in newer releases, the SDNInterface component is not packaged in the opendaylight package included in RHEL.

Severity ?

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE

CWE-89

Assigner

redhat

References

URL

Tags

	https://www.exploit-db.com/exploits/44747/	exploitx_refsource_EXPLOIT-DB
	http://www.securityfocus.com/bid/104238	vdb-entryx_refsource_BID
	https://jira.opendaylight.org/browse/SDNINTRFAC-14	x_refsource_CONFIRM
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2…	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	[UNKNOWN]	opendaylight	Affected: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:51:48.839Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "44747",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/44747/"
          },
          {
            "name": "104238",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/104238"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://jira.opendaylight.org/browse/SDNINTRFAC-14"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1132"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "opendaylight",
          "vendor": "[UNKNOWN]",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2018-05-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in Opendaylight\u0027s SDNInterfaceapp (SDNI). Attackers can SQL inject the component\u0027s database (SQLite) without authenticating to the controller or SDNInterfaceapp. SDNInterface has been deprecated in OpenDayLight since it was last used in the final Carbon series release. In addition to the component not being included in OpenDayLight in newer releases, the SDNInterface component is not packaged in the opendaylight package included in RHEL."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-89",
              "description": "CWE-89",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-06-21T09:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "44747",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/44747/"
        },
        {
          "name": "104238",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/104238"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://jira.opendaylight.org/browse/SDNINTRFAC-14"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1132"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2018-1132",
    "datePublished": "2018-06-20T13:00:00",
    "dateReserved": "2017-12-04T00:00:00",
    "dateUpdated": "2024-08-05T03:51:48.839Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2018-11035

CVE-2018-1132 (GCVE-0-2018-1132)

Tags

Sightings

Nomenclature