Vulnerability-Lookup

CNVD-2020-52207

Vulnerability from cnvd - Published: 2020-09-16

Title

Hyland OnBase日志记录漏洞

Description

Hyland Software是美国一家开发企业内容管理和进程管理软件套件OnBase的公司。公司套件应用在医疗保健，金融机构，保险公司，政府部门，高等教育和制造业。 Hyland OnBase 在18.0.0.32版本中存在日志记录漏洞，该漏洞源于只在客户端记录日志，所以多数恶意攻击都不会被记录下来。攻击者可以利用该漏洞将任意数据写入服务器日志，包括假/欺骗攻击，并可对日志服务器造成拒绝服务攻击。

Severity

中

Patch Name

Hyland OnBase日志记录漏洞的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://seclists.org/fulldisclosure/2020/Sep/8

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-25249

Impacted products

Name
Hyland OnBase 18.0.0.32

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-25249",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-25249"
    }
  },
  "description": "Hyland Software\u662f\u7f8e\u56fd\u4e00\u5bb6\u5f00\u53d1\u4f01\u4e1a\u5185\u5bb9\u7ba1\u7406\u548c\u8fdb\u7a0b\u7ba1\u7406\u8f6f\u4ef6\u5957\u4ef6OnBase\u7684\u516c\u53f8\u3002\u516c\u53f8\u5957\u4ef6\u5e94\u7528\u5728\u533b\u7597\u4fdd\u5065\uff0c\u91d1\u878d\u673a\u6784\uff0c\u4fdd\u9669\u516c\u53f8\uff0c\u653f\u5e9c\u90e8\u95e8\uff0c\u9ad8\u7b49\u6559\u80b2\u548c\u5236\u9020\u4e1a\u3002\n\nHyland OnBase \u572818.0.0.32\u7248\u672c\u4e2d\u5b58\u5728\u65e5\u5fd7\u8bb0\u5f55\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u53ea\u5728\u5ba2\u6237\u7aef\u8bb0\u5f55\u65e5\u5fd7\uff0c\u6240\u4ee5\u591a\u6570\u6076\u610f\u653b\u51fb\u90fd\u4e0d\u4f1a\u88ab\u8bb0\u5f55\u4e0b\u6765\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u5c06\u4efb\u610f\u6570\u636e\u5199\u5165\u670d\u52a1\u5668\u65e5\u5fd7\uff0c\u5305\u62ec\u5047/\u6b3a\u9a97\u653b\u51fb\uff0c\u5e76\u53ef\u5bf9\u65e5\u5fd7\u670d\u52a1\u5668\u9020\u6210\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://seclists.org/fulldisclosure/2020/Sep/8",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-52207",
  "openTime": "2020-09-16",
  "patchDescription": "Hyland Software\u662f\u7f8e\u56fd\u4e00\u5bb6\u5f00\u53d1\u4f01\u4e1a\u5185\u5bb9\u7ba1\u7406\u548c\u8fdb\u7a0b\u7ba1\u7406\u8f6f\u4ef6\u5957\u4ef6OnBase\u7684\u516c\u53f8\u3002\u516c\u53f8\u5957\u4ef6\u5e94\u7528\u5728\u533b\u7597\u4fdd\u5065\uff0c\u91d1\u878d\u673a\u6784\uff0c\u4fdd\u9669\u516c\u53f8\uff0c\u653f\u5e9c\u90e8\u95e8\uff0c\u9ad8\u7b49\u6559\u80b2\u548c\u5236\u9020\u4e1a\u3002\r\n\r\nHyland OnBase \u572818.0.0.32\u7248\u672c\u4e2d\u5b58\u5728\u65e5\u5fd7\u8bb0\u5f55\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u53ea\u5728\u5ba2\u6237\u7aef\u8bb0\u5f55\u65e5\u5fd7\uff0c\u6240\u4ee5\u591a\u6570\u6076\u610f\u653b\u51fb\u90fd\u4e0d\u4f1a\u88ab\u8bb0\u5f55\u4e0b\u6765\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u5c06\u4efb\u610f\u6570\u636e\u5199\u5165\u670d\u52a1\u5668\u65e5\u5fd7\uff0c\u5305\u62ec\u5047/\u6b3a\u9a97\u653b\u51fb\uff0c\u5e76\u53ef\u5bf9\u65e5\u5fd7\u670d\u52a1\u5668\u9020\u6210\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Hyland OnBase\u65e5\u5fd7\u8bb0\u5f55\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Hyland OnBase 18.0.0.32"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-25249",
  "serverity": "\u4e2d",
  "submitTime": "2020-09-16",
  "title": "Hyland OnBase\u65e5\u5fd7\u8bb0\u5f55\u6f0f\u6d1e"
}

CVE-2020-25249 (GCVE-0-2020-25249)

Vulnerability from cvelistv5 – Published: 2020-09-11 02:20 – Updated: 2024-08-04 15:33

Summary

An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. The server typically logs activity only when a client application specifies that logging is desired. This can be problematic for use cases in a regulated industry, where server-side logging is required in additional situations.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

https://seclists.org/fulldisclosure/2020/Sep/8

x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T15:33:05.523Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://seclists.org/fulldisclosure/2020/Sep/8"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. The server typically logs activity only when a client application specifies that logging is desired. This can be problematic for use cases in a regulated industry, where server-side logging is required in additional situations."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-11-09T17:45:05",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://seclists.org/fulldisclosure/2020/Sep/8"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-25249",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. The server typically logs activity only when a client application specifies that logging is desired. This can be problematic for use cases in a regulated industry, where server-side logging is required in additional situations."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://seclists.org/fulldisclosure/2020/Sep/8",
              "refsource": "MISC",
              "url": "https://seclists.org/fulldisclosure/2020/Sep/8"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-25249",
    "datePublished": "2020-09-11T02:20:47",
    "dateReserved": "2020-09-11T00:00:00",
    "dateUpdated": "2024-08-04T15:33:05.523Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-52207

CVE-2020-25249 (GCVE-0-2020-25249)

Tags

Sightings

Nomenclature