cnvd - cnvd-2021-18399

CNVD-2021-18399

Vulnerability from cnvd - Published: 2021-03-18

Title

F5 NGINX Controller身份验证漏洞

Description

F5 NGINX Controller是美国F5公司的一款用于NGINX的集中式监视和管理平台。该平台支持使用可视化界面管理多个NGINX实例。 F5 NGINX Controller 1.0.1版本、2.0.0版本至2.9.0版本和3.0.0版本至3.5.0版本中的NGINX controller NATS消息服务存在安全漏洞，该漏洞源于程序未能进行任何形式的身份验证。攻击者可利用该漏洞窃听NATS连接，从而获得存储在消息队列中的数据。

Severity

中

Formal description

目前厂商发布了该软件3.x版本的修复措施，该软件1.x版本和2.x版本的修复措施暂未发布，详情请参考链接： https://support.f5.com/csp/article/K59209532

Reference

https://www.auscert.org.au/bulletins/ESB-2020.2264/

Impacted products

Name
['F5 NGINX Controller 1.0.1', 'F5 NGINX Controller >=2.0.0，<=2.9.0', 'F5 NGINX Controller >=3.0.0，<=3.5.0']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-5910"
    }
  },
  "description": "F5 NGINX Controller\u662f\u7f8e\u56fdF5\u516c\u53f8\u7684\u4e00\u6b3e\u7528\u4e8eNGINX\u7684\u96c6\u4e2d\u5f0f\u76d1\u89c6\u548c\u7ba1\u7406\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u652f\u6301\u4f7f\u7528\u53ef\u89c6\u5316\u754c\u9762\u7ba1\u7406\u591a\u4e2aNGINX\u5b9e\u4f8b\u3002\n\nF5 NGINX Controller 1.0.1\u7248\u672c\u30012.0.0\u7248\u672c\u81f32.9.0\u7248\u672c\u548c3.0.0\u7248\u672c\u81f33.5.0\u7248\u672c\u4e2d\u7684NGINX controller NATS\u6d88\u606f\u670d\u52a1\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u8fdb\u884c\u4efb\u4f55\u5f62\u5f0f\u7684\u8eab\u4efd\u9a8c\u8bc1\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7a83\u542cNATS\u8fde\u63a5\uff0c\u4ece\u800c\u83b7\u5f97\u5b58\u50a8\u5728\u6d88\u606f\u961f\u5217\u4e2d\u7684\u6570\u636e\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u53d1\u5e03\u4e86\u8be5\u8f6f\u4ef63.x\u7248\u672c\u7684\u4fee\u590d\u63aa\u65bd\uff0c\u8be5\u8f6f\u4ef61.x\u7248\u672c\u548c2.x\u7248\u672c\u7684\u4fee\u590d\u63aa\u65bd\u6682\u672a\u53d1\u5e03\uff0c\u8be6\u60c5\u8bf7\u53c2\u8003\u94fe\u63a5\uff1a\r\nhttps://support.f5.com/csp/article/K59209532",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-18399",
  "openTime": "2021-03-18",
  "products": {
    "product": [
      "F5 NGINX Controller 1.0.1",
      "F5 NGINX Controller \u003e=2.0.0\uff0c\u003c=2.9.0",
      "F5 NGINX Controller \u003e=3.0.0\uff0c\u003c=3.5.0"
    ]
  },
  "referenceLink": "https://www.auscert.org.au/bulletins/ESB-2020.2264/",
  "serverity": "\u4e2d",
  "submitTime": "2020-07-02",
  "title": "F5 NGINX Controller\u8eab\u4efd\u9a8c\u8bc1\u6f0f\u6d1e"
}

CVE-2020-5910 (GCVE-0-2020-5910)

Vulnerability from cvelistv5 – Published: 2020-07-02 12:25 – Updated: 2024-08-04 08:47

Summary

In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized.

Severity ?

No CVSS data available.

CWE

data leakage

Assigner

References

URL

Tags

https://support.f5.com/csp/article/K59209532

x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	NGINX Controller	Affected: 3.0.0-3.5.0, 2.0.0-2.9.0, 1.0.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T08:47:40.655Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.f5.com/csp/article/K59209532"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "NGINX Controller",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "3.0.0-3.5.0, 2.0.0-2.9.0, 1.0.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "data leakage",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-07-02T12:25:11",
        "orgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
        "shortName": "f5"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.f5.com/csp/article/K59209532"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "f5sirt@f5.com",
          "ID": "CVE-2020-5910",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "NGINX Controller",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.0.0-3.5.0, 2.0.0-2.9.0, 1.0.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In versions 3.0.0-3.5.0, 2.0.0-2.9.0, and 1.0.1, the Neural Autonomic Transport System (NATS) messaging services in use by the NGINX Controller do not require any form of authentication, so any successful connection would be authorized."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "data leakage"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.f5.com/csp/article/K59209532",
              "refsource": "MISC",
              "url": "https://support.f5.com/csp/article/K59209532"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9dacffd4-cb11-413f-8451-fbbfd4ddc0ab",
    "assignerShortName": "f5",
    "cveId": "CVE-2020-5910",
    "datePublished": "2020-07-02T12:25:11",
    "dateReserved": "2020-01-06T00:00:00",
    "dateUpdated": "2024-08-04T08:47:40.655Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2021-18399

CVE-2020-5910 (GCVE-0-2020-5910)

Tags

Sightings

Nomenclature