cnvd - cnvd-2019-43839

CNVD-2019-43839

Vulnerability from cnvd - Published: 2019-12-04

Title

Cloud Foundry UAA Release信息泄露漏洞

Description

UAA Release和UAA都是Cloud Foundry的不同版本的认证和管理服务终端。 Cloud Foundry UAA Release 74.8.0之前版本存在信息泄露漏洞。该漏洞源于UAA Release将所有查询参数记录到tomcat的访问文件中，如果查询参数用于提供身份验证（即凭据），其也会被记录。攻击者可利用该漏洞获取日志查询参数。

Severity

中

Patch Name

Cloud Foundry UAA Release信息泄露漏洞的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://www.cloudfoundry.org/blog/cve-2019-11290/

Reference

https://nvd.nist.gov/vuln/detail/CVE-2019-11290

Impacted products

Name
Cloud Foundry UAA release <74.8.0

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-11290",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2019-11290"
    }
  },
  "description": "UAA Release\u548cUAA\u90fd\u662fCloud Foundry\u7684\u4e0d\u540c\u7248\u672c\u7684\u8ba4\u8bc1\u548c\u7ba1\u7406\u670d\u52a1\u7ec8\u7aef\u3002\n\nCloud Foundry UAA Release 74.8.0\u4e4b\u524d\u7248\u672c\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8eUAA Release\u5c06\u6240\u6709\u67e5\u8be2\u53c2\u6570\u8bb0\u5f55\u5230tomcat\u7684\u8bbf\u95ee\u6587\u4ef6\u4e2d\uff0c\u5982\u679c\u67e5\u8be2\u53c2\u6570\u7528\u4e8e\u63d0\u4f9b\u8eab\u4efd\u9a8c\u8bc1\uff08\u5373\u51ed\u636e\uff09\uff0c\u5176\u4e5f\u4f1a\u88ab\u8bb0\u5f55\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u65e5\u5fd7\u67e5\u8be2\u53c2\u6570\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.cloudfoundry.org/blog/cve-2019-11290/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-43839",
  "openTime": "2019-12-04",
  "patchDescription": "UAA Release\u548cUAA\u90fd\u662fCloud Foundry\u7684\u4e0d\u540c\u7248\u672c\u7684\u8ba4\u8bc1\u548c\u7ba1\u7406\u670d\u52a1\u7ec8\u7aef\u3002\r\n\r\nCloud Foundry UAA Release 74.8.0\u4e4b\u524d\u7248\u672c\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8eUAA Release\u5c06\u6240\u6709\u67e5\u8be2\u53c2\u6570\u8bb0\u5f55\u5230tomcat\u7684\u8bbf\u95ee\u6587\u4ef6\u4e2d\uff0c\u5982\u679c\u67e5\u8be2\u53c2\u6570\u7528\u4e8e\u63d0\u4f9b\u8eab\u4efd\u9a8c\u8bc1\uff08\u5373\u51ed\u636e\uff09\uff0c\u5176\u4e5f\u4f1a\u88ab\u8bb0\u5f55\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u65e5\u5fd7\u67e5\u8be2\u53c2\u6570\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cloud Foundry UAA Release\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cloud Foundry UAA release \u003c74.8.0"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2019-11290",
  "serverity": "\u4e2d",
  "submitTime": "2019-11-26",
  "title": "Cloud Foundry UAA Release\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2019-11290 (GCVE-0-2019-11290)

Vulnerability from cvelistv5 – Published: 2019-11-25 23:56 – Updated: 2024-09-16 21:02

Summary

Cloud Foundry UAA Release, versions prior to v74.8.0, logs all query parameters to tomcat’s access file. If the query parameters are used to provide authentication, ie. credentials, then they will be logged as well.

Severity ?

8.8 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-532 - Inclusion of Sensitive Information in Log Files

Assigner

pivotal

References

URL

Tags

https://www.cloudfoundry.org/blog/cve-2019-11290

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Cloud Foundry	UAA Release	Affected: All , < v74.8.0 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T22:48:09.173Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.cloudfoundry.org/blog/cve-2019-11290"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "UAA Release",
          "vendor": "Cloud Foundry",
          "versions": [
            {
              "lessThan": "v74.8.0",
              "status": "affected",
              "version": "All",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2019-11-21T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cloud Foundry UAA Release, versions prior to v74.8.0, logs all query parameters to tomcat\u2019s access file. If the query parameters are used to provide authentication, ie. credentials, then they will be logged as well."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-532",
              "description": "CWE-532: Inclusion of Sensitive Information in Log Files",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-11-25T23:56:17",
        "orgId": "862b2186-222f-48b9-af87-f1fb7bb26d03",
        "shortName": "pivotal"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.cloudfoundry.org/blog/cve-2019-11290"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Cloud Foundry UAA logs query parameters in tomcat access file",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@pivotal.io",
          "DATE_PUBLIC": "2019-11-21T00:00:00.000Z",
          "ID": "CVE-2019-11290",
          "STATE": "PUBLIC",
          "TITLE": "Cloud Foundry UAA logs query parameters in tomcat access file"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "UAA Release",
                      "version": {
                        "version_data": [
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "All",
                            "version_value": "v74.8.0"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Cloud Foundry"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cloud Foundry UAA Release, versions prior to v74.8.0, logs all query parameters to tomcat\u2019s access file. If the query parameters are used to provide authentication, ie. credentials, then they will be logged as well."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-532: Inclusion of Sensitive Information in Log Files"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.cloudfoundry.org/blog/cve-2019-11290",
              "refsource": "CONFIRM",
              "url": "https://www.cloudfoundry.org/blog/cve-2019-11290"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "862b2186-222f-48b9-af87-f1fb7bb26d03",
    "assignerShortName": "pivotal",
    "cveId": "CVE-2019-11290",
    "datePublished": "2019-11-25T23:56:17.082402Z",
    "dateReserved": "2019-04-18T00:00:00",
    "dateUpdated": "2024-09-16T21:02:44.357Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2019-43839

CVE-2019-11290 (GCVE-0-2019-11290)

Tags

Sightings

Nomenclature