cnvd - cnvd-2019-07890

CNVD-2019-07890

Vulnerability from cnvd - Published: 2019-03-22

Title

Pivotal Software Pivotal Application Service信息泄露漏洞

Description

Pivotal Software Pivotal Application Service（PAS）是美国Pivotal Software公司的一套应用程序管理软件。 Pivotal Software PAS 2.2.12之前的2.2.x版本、2.3.7之前的2.3.x版本和2.4.3之前的2.4.x版本中存在安全漏洞，该漏洞源于使用云控制器代理的应用程序管理器未能验证SSL凭证。远程攻击者可通过劫持云控制器的DNS记录利用该漏洞拦截发送到Cloud Controller的访问令牌，进而访问到云控制器中用户的资源。

Severity

中

Patch Name

Pivotal Software Pivotal Application Service信息泄露漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://pivotal.io/security/cve-2019-3777

Reference

https://nvd.nist.gov/vuln/detail/CVE-2019-3777

Impacted products

Name
['Pivotal Software Pivotal Application Service 2.4.;<2.4.3', 'Pivotal Software Pivotal Application Service 2.3.;<2.3.7', 'Pivotal Software Pivotal Application Service 2.2.*;<2.2.12']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "107214"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-3777",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3777"
    }
  },
  "description": "Pivotal Software Pivotal Application Service\uff08PAS\uff09\u662f\u7f8e\u56fdPivotal Software\u516c\u53f8\u7684\u4e00\u5957\u5e94\u7528\u7a0b\u5e8f\u7ba1\u7406\u8f6f\u4ef6\u3002\n\nPivotal Software PAS 2.2.12\u4e4b\u524d\u76842.2.x\u7248\u672c\u30012.3.7\u4e4b\u524d\u76842.3.x\u7248\u672c\u548c2.4.3\u4e4b\u524d\u76842.4.x\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u4f7f\u7528\u4e91\u63a7\u5236\u5668\u4ee3\u7406\u7684\u5e94\u7528\u7a0b\u5e8f\u7ba1\u7406\u5668\u672a\u80fd\u9a8c\u8bc1SSL\u51ed\u8bc1\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u52ab\u6301\u4e91\u63a7\u5236\u5668\u7684DNS\u8bb0\u5f55\u5229\u7528\u8be5\u6f0f\u6d1e\u62e6\u622a\u53d1\u9001\u5230Cloud Controller\u7684\u8bbf\u95ee\u4ee4\u724c\uff0c\u8fdb\u800c\u8bbf\u95ee\u5230\u4e91\u63a7\u5236\u5668\u4e2d\u7528\u6237\u7684\u8d44\u6e90\u3002",
  "discovererName": "Pivotal Software",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://pivotal.io/security/cve-2019-3777",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-07890",
  "openTime": "2019-03-22",
  "patchDescription": "Pivotal Software Pivotal Application Service\uff08PAS\uff09\u662f\u7f8e\u56fdPivotal Software\u516c\u53f8\u7684\u4e00\u5957\u5e94\u7528\u7a0b\u5e8f\u7ba1\u7406\u8f6f\u4ef6\u3002\r\n\r\nPivotal Software PAS 2.2.12\u4e4b\u524d\u76842.2.x\u7248\u672c\u30012.3.7\u4e4b\u524d\u76842.3.x\u7248\u672c\u548c2.4.3\u4e4b\u524d\u76842.4.x\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u4f7f\u7528\u4e91\u63a7\u5236\u5668\u4ee3\u7406\u7684\u5e94\u7528\u7a0b\u5e8f\u7ba1\u7406\u5668\u672a\u80fd\u9a8c\u8bc1SSL\u51ed\u8bc1\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u52ab\u6301\u4e91\u63a7\u5236\u5668\u7684DNS\u8bb0\u5f55\u5229\u7528\u8be5\u6f0f\u6d1e\u62e6\u622a\u53d1\u9001\u5230Cloud Controller\u7684\u8bbf\u95ee\u4ee4\u724c\uff0c\u8fdb\u800c\u8bbf\u95ee\u5230\u4e91\u63a7\u5236\u5668\u4e2d\u7528\u6237\u7684\u8d44\u6e90\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Pivotal Software Pivotal Application Service\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Pivotal Software Pivotal Application Service 2.4.*;\u003c2.4.3",
      "Pivotal Software Pivotal Application Service 2.3.*;\u003c2.3.7",
      "Pivotal Software Pivotal Application Service 2.2.*;\u003c2.2.12"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2019-3777",
  "serverity": "\u4e2d",
  "submitTime": "2019-03-13",
  "title": "Pivotal Software Pivotal Application Service\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2019-3777 (GCVE-0-2019-3777)

Vulnerability from cvelistv5 – Published: 2019-03-07 19:00 – Updated: 2024-09-16 21:56

Title

Apps Manager unverified SSL certs in Cloud Controller proxy

Summary

Pivotal Application Service (PAS), versions 2.2.x prior to 2.2.12, 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.3, contain apps manager that uses a cloud controller proxy that fails to verify SSL certs. A remote unauthenticated attacker that could hijack the Cloud Controller's DNS record could intercept access tokens sent to the Cloud Controller, giving the attacker access to the user's resources in the Cloud Controller

Severity ?

8 (High)


                        
                          CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N

CWE

CWE-295 - Improper Certificate Validation

Assigner

dell

References

URL

Tags

	http://www.securityfocus.com/bid/107214	vdb-entryx_refsource_BID
	https://pivotal.io/security/cve-2019-3777	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

Pivotal

Apps Manager

Affected: 666 , < 666.0.19 (custom)
Affected: 665 , < 665.0.26 (custom)
Affected: 667 , < 667.0.5 (custom)

Pivotal

Pivotal Application Service

Affected: 2.4 , < 2.4.3 (custom)
Affected: 2.3 , < 2.3.7 (custom)
Affected: 2.2 , < 2.2.12 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T19:19:18.134Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "107214",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/107214"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://pivotal.io/security/cve-2019-3777"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apps Manager",
          "vendor": "Pivotal",
          "versions": [
            {
              "lessThan": "666.0.19",
              "status": "affected",
              "version": "666",
              "versionType": "custom"
            },
            {
              "lessThan": "665.0.26",
              "status": "affected",
              "version": "665",
              "versionType": "custom"
            },
            {
              "lessThan": "667.0.5",
              "status": "affected",
              "version": "667",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "Pivotal Application Service",
          "vendor": "Pivotal",
          "versions": [
            {
              "lessThan": "2.4.3",
              "status": "affected",
              "version": "2.4",
              "versionType": "custom"
            },
            {
              "lessThan": "2.3.7",
              "status": "affected",
              "version": "2.3",
              "versionType": "custom"
            },
            {
              "lessThan": "2.2.12",
              "status": "affected",
              "version": "2.2",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2019-02-26T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Pivotal Application Service (PAS), versions 2.2.x prior to 2.2.12, 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.3, contain apps manager that uses a cloud controller proxy that fails to verify SSL certs. A remote unauthenticated attacker that could hijack the Cloud Controller\u0027s DNS record could intercept access tokens sent to the Cloud Controller, giving the attacker access to the user\u0027s resources in the Cloud Controller"
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-295",
              "description": "CWE-295: Improper Certificate Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-03-08T10:57:01",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "name": "107214",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/107214"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://pivotal.io/security/cve-2019-3777"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Apps Manager unverified SSL certs in Cloud Controller proxy",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security_alert@emc.com",
          "DATE_PUBLIC": "2019-02-26T23:47:49.000Z",
          "ID": "CVE-2019-3777",
          "STATE": "PUBLIC",
          "TITLE": "Apps Manager unverified SSL certs in Cloud Controller proxy"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apps Manager",
                      "version": {
                        "version_data": [
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "666",
                            "version_value": "666.0.19"
                          },
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "665",
                            "version_value": "665.0.26"
                          },
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "667",
                            "version_value": "667.0.5"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Pivotal Application Service",
                      "version": {
                        "version_data": [
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "2.4",
                            "version_value": "2.4.3"
                          },
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "2.3",
                            "version_value": "2.3.7"
                          },
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "2.2",
                            "version_value": "2.2.12"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Pivotal"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Pivotal Application Service (PAS), versions 2.2.x prior to 2.2.12, 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.3, contain apps manager that uses a cloud controller proxy that fails to verify SSL certs. A remote unauthenticated attacker that could hijack the Cloud Controller\u0027s DNS record could intercept access tokens sent to the Cloud Controller, giving the attacker access to the user\u0027s resources in the Cloud Controller"
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-295: Improper Certificate Validation"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "107214",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/107214"
            },
            {
              "name": "https://pivotal.io/security/cve-2019-3777",
              "refsource": "CONFIRM",
              "url": "https://pivotal.io/security/cve-2019-3777"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2019-3777",
    "datePublished": "2019-03-07T19:00:00Z",
    "dateReserved": "2019-01-03T00:00:00",
    "dateUpdated": "2024-09-16T21:56:55.392Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2019-07890

CVE-2019-3777 (GCVE-0-2019-3777)

Tags

Sightings

Nomenclature