cnvd - cnvd-2024-38777

CNVD-2024-38777

Vulnerability from cnvd - Published: 2024-09-24

Title

Dell EMC AppSync日志信息泄露漏洞

Description

Dell EMC AppSync是美国戴尔（Dell）公司的一个复制数据管理软件。提供一种由SLA驱动的简单自助服务方式来保护、恢复和克隆关键的Microsoft与Oracle应用程序以及VMware环境。 Dell EMC AppSync存在日志信息泄露漏洞，该漏洞源于在AppSync服务器日志中包含敏感信息漏洞。攻击者可以利用该漏洞窃取日志中的敏感信息。

Severity

中

Patch Name

Dell EMC AppSync日志信息泄露漏洞的补丁

Patch Description

Formal description

厂商已提供漏洞修复方案，请关注厂商主页更新： https://www.dell.com/support/kbdoc/en-us/000221932/dsa-2024-072-security-update-for-dell-emc-appsync-for-vulnerabilities

Reference

https://nvd.nist.gov/vuln/detail/CVE-2024-22464

Impacted products

Name
DELL EMC AppSync >=4.2.0.0，<4.6.0.2

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-22464",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2024-22464"
    }
  },
  "description": "Dell EMC AppSync\u662f\u7f8e\u56fd\u6234\u5c14\uff08Dell\uff09\u516c\u53f8\u7684\u4e00\u4e2a\u590d\u5236\u6570\u636e\u7ba1\u7406\u8f6f\u4ef6\u3002\u63d0\u4f9b\u4e00\u79cd\u7531SLA\u9a71\u52a8\u7684\u7b80\u5355\u81ea\u52a9\u670d\u52a1\u65b9\u5f0f\u6765\u4fdd\u62a4\u3001\u6062\u590d\u548c\u514b\u9686\u5173\u952e\u7684Microsoft\u4e0eOracle\u5e94\u7528\u7a0b\u5e8f\u4ee5\u53caVMware\u73af\u5883\u3002\n\nDell EMC AppSync\u5b58\u5728\u65e5\u5fd7\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5728AppSync\u670d\u52a1\u5668\u65e5\u5fd7\u4e2d\u5305\u542b\u654f\u611f\u4fe1\u606f\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u7a83\u53d6\u65e5\u5fd7\u4e2d\u7684\u654f\u611f\u4fe1\u606f\u3002",
  "formalWay": "\u5382\u5546\u5df2\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u590d\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u66f4\u65b0\uff1a\r\nhttps://www.dell.com/support/kbdoc/en-us/000221932/dsa-2024-072-security-update-for-dell-emc-appsync-for-vulnerabilities",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-38777",
  "openTime": "2024-09-24",
  "patchDescription": "Dell EMC AppSync\u662f\u7f8e\u56fd\u6234\u5c14\uff08Dell\uff09\u516c\u53f8\u7684\u4e00\u4e2a\u590d\u5236\u6570\u636e\u7ba1\u7406\u8f6f\u4ef6\u3002\u63d0\u4f9b\u4e00\u79cd\u7531SLA\u9a71\u52a8\u7684\u7b80\u5355\u81ea\u52a9\u670d\u52a1\u65b9\u5f0f\u6765\u4fdd\u62a4\u3001\u6062\u590d\u548c\u514b\u9686\u5173\u952e\u7684Microsoft\u4e0eOracle\u5e94\u7528\u7a0b\u5e8f\u4ee5\u53caVMware\u73af\u5883\u3002\r\n\r\nDell EMC AppSync\u5b58\u5728\u65e5\u5fd7\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5728AppSync\u670d\u52a1\u5668\u65e5\u5fd7\u4e2d\u5305\u542b\u654f\u611f\u4fe1\u606f\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u7a83\u53d6\u65e5\u5fd7\u4e2d\u7684\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Dell EMC AppSync\u65e5\u5fd7\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "DELL EMC AppSync \u003e=4.2.0.0\uff0c\u003c4.6.0.2"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2024-22464",
  "serverity": "\u4e2d",
  "submitTime": "2024-02-22",
  "title": "Dell EMC AppSync\u65e5\u5fd7\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2024-22464 (GCVE-0-2024-22464)

Vulnerability from cvelistv5 – Published: 2024-02-08 09:23 – Updated: 2025-04-24 15:56

Summary

Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain an exposure of sensitive information vulnerability in AppSync server logs. A high privileged remote attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable system with privileges of the compromised account.

Severity ?

6.2 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N

CWE

CWE-532 - Insertion of Sensitive Information into Log File

Assigner

dell

References

URL

Tags

https://www.dell.com/support/kbdoc/en-us/00022193…

vendor-advisory

Impacted products

	Vendor	Product	Version
	Dell	AppSync	Affected: 4.2.0.0 , ≤ 4.6.0.0 (semver)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-22464",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-08T17:22:08.060281Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-24T15:56:31.540Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:43:34.916Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.dell.com/support/kbdoc/en-us/000221932/dsa-2024-072-security-update-for-dell-emc-appsync-for-vulnerabilities"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "AppSync",
          "vendor": "Dell",
          "versions": [
            {
              "lessThanOrEqual": "4.6.0.0",
              "status": "affected",
              "version": "4.2.0.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2024-02-08T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\n\n\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eDell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain an exposure of sensitive information vulnerability in AppSync server logs. A high privileged remote attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable system with privileges of the compromised account.\u003c/span\u003e\n\n"
            }
          ],
          "value": "\nDell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain an exposure of sensitive information vulnerability in AppSync server logs. A high privileged remote attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable system with privileges of the compromised account.\n\n"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-532",
              "description": "CWE-532: Insertion of Sensitive Information into Log File",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-02-08T09:23:48.927Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000221932/dsa-2024-072-security-update-for-dell-emc-appsync-for-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2024-22464",
    "datePublished": "2024-02-08T09:23:48.927Z",
    "dateReserved": "2024-01-10T15:29:59.458Z",
    "dateUpdated": "2025-04-24T15:56:31.540Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2024-38777

CVE-2024-22464 (GCVE-0-2024-22464)

Tags

Sightings

Nomenclature