FKIE_CVE-2015-2805

Vulnerability from fkie_nvd - Published: 2015-06-16 16:59 - Updated: 2025-04-12 10:46
Severity ?
Summary
Cross-site request forgery (CSRF) vulnerability in sec/content/sec_asa_users_local_db_add.html in the management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400, 6855, 6900, 10K, and 6860 with firmware 6.4.5.R02, 6.4.6.R01, 6.6.4.R01, 6.6.5.R02, 7.3.2.R01, 7.3.3.R01, 7.3.4.R01, and 8.1.1.R01 allows remote attackers to hijack the authentication of administrators for requests that create users via a crafted request.
References
cve@mitre.orghttp://packetstormsecurity.com/files/132236/Alcatel-Lucent-OmniSwitch-Web-Interface-Cross-Site-Request-Forgery.htmlExploit
cve@mitre.orghttp://seclists.org/fulldisclosure/2015/Jun/23Exploit
cve@mitre.orghttp://www.securityfocus.com/archive/1/535732/100/0/threaded
cve@mitre.orghttp://www.securityfocus.com/bid/75121
cve@mitre.orghttp://www.securitytracker.com/id/1032544
cve@mitre.orghttps://www.exploit-db.com/exploits/37261/Exploit
cve@mitre.orghttps://www.redteam-pentesting.de/advisories/rt-sa-2015-004Exploit
af854a3a-2127-422b-91ae-364da2661108http://packetstormsecurity.com/files/132236/Alcatel-Lucent-OmniSwitch-Web-Interface-Cross-Site-Request-Forgery.htmlExploit
af854a3a-2127-422b-91ae-364da2661108http://seclists.org/fulldisclosure/2015/Jun/23Exploit
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/535732/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/75121
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1032544
af854a3a-2127-422b-91ae-364da2661108https://www.exploit-db.com/exploits/37261/Exploit
af854a3a-2127-422b-91ae-364da2661108https://www.redteam-pentesting.de/advisories/rt-sa-2015-004Exploit
Impacted products
Vendor Product Version
alcatel-lucent omniswitch_firmware *
alcatel-lucent omniswitch_firmware *
alcatel-lucent omniswitch_firmware *
alcatel-lucent omniswitch_firmware *
alcatel-lucent omniswitch_firmware *
alcatel-lucent omniswitch_firmware *
alcatel-lucent omniswitch_firmware *
alcatel-lucent omniswitch_firmware *
alcatel-lucent omniswitch_10k *
alcatel-lucent omniswitch_6250 *
alcatel-lucent omniswitch_6400 *
alcatel-lucent omniswitch_6450 *
alcatel-lucent omniswitch_6850e *
alcatel-lucent omniswitch_6855 *
alcatel-lucent omniswitch_6860 *
alcatel-lucent omniswitch_6900 *
alcatel-lucent omniswitch_9000e *
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:alcatel-lucent:omniswitch_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "146D0494-CC3B-47E9-8798-631AA8015A73",
              "versionEndIncluding": "6.4.5.r02",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:alcatel-lucent:omniswitch_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B629D98-2C6F-4937-A3B3-CD3FEE2B61FD",
              "versionEndIncluding": "6.4.6.r01",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:alcatel-lucent:omniswitch_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A8CE49B7-937F-4CEE-9A3D-1D94C6A0C0FE",
              "versionEndIncluding": "6.6.4.r01",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:alcatel-lucent:omniswitch_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB4AC6CF-716C-4A40-B0BB-8C652565FD52",
              "versionEndIncluding": "6.6.5.r02",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:alcatel-lucent:omniswitch_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB40E084-75AF-4851-A2DC-A9D6C175C1E4",
              "versionEndIncluding": "7.3.2.r01",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:alcatel-lucent:omniswitch_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F70B59CA-426A-49A1-BD75-516FBC0A4935",
              "versionEndIncluding": "7.3.3.r01",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:alcatel-lucent:omniswitch_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C61B0959-BF8F-4645-9690-B5E7D43CD0D1",
              "versionEndIncluding": "7.3.4.r01",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:alcatel-lucent:omniswitch_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B01558D-907A-4746-A09C-5761A6EE5B8C",
              "versionEndIncluding": "8.1.1.r01",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:alcatel-lucent:omniswitch_10k:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7C154AC-D64C-4CB0-99E6-1792B23237BE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:alcatel-lucent:omniswitch_6250:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CC17F6AB-A4A7-4DCF-A38D-567A626BAC9D",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:alcatel-lucent:omniswitch_6400:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6E628D41-4AC8-4C60-8353-028588BAE9C0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:alcatel-lucent:omniswitch_6450:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A4D9AB0D-317D-4147-B944-02922FC3E14A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:alcatel-lucent:omniswitch_6850e:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2026FD8F-2734-4927-AE3D-F346B6A3F7DD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:alcatel-lucent:omniswitch_6855:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9CA46E94-6195-4AD9-A6C1-97F309D57614",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:alcatel-lucent:omniswitch_6860:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E6558791-5C3C-451C-B8C9-498A27555248",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:alcatel-lucent:omniswitch_6900:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C314BC45-D037-4FD9-B893-A737358EA851",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:alcatel-lucent:omniswitch_9000e:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "30CE6E3F-9C8A-4EC8-9DF5-DA618C4985C6",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cross-site request forgery (CSRF) vulnerability in sec/content/sec_asa_users_local_db_add.html in the management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400, 6855, 6900, 10K, and 6860 with firmware 6.4.5.R02, 6.4.6.R01, 6.6.4.R01, 6.6.5.R02, 7.3.2.R01, 7.3.3.R01, 7.3.4.R01, and 8.1.1.R01 allows remote attackers to hijack the authentication of administrators for requests that create users via a crafted request."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de CSRF en sec/content/sec_asa_users_local_db_add.html en la interfaz de gesti\u00f3n en Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400, 6855, 6900, 10K, y 6860 con firmware 6.4.5.R02, 6.4.6.R01, 6.6.4.R01, 6.6.5.R02, 7.3.2.R01, 7.3.3.R01, 7.3.4.R01, y 8.1.1.R01 permite a atacantes remotos secuestrar la autenticaci\u00f3n de administradores para solicitudes que crean usuarios a trav\u00e9s de una solicitud manipulada."
    }
  ],
  "id": "CVE-2015-2805",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2015-06-16T16:59:01.113",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://packetstormsecurity.com/files/132236/Alcatel-Lucent-OmniSwitch-Web-Interface-Cross-Site-Request-Forgery.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://seclists.org/fulldisclosure/2015/Jun/23"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/535732/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/75121"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id/1032544"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "https://www.exploit-db.com/exploits/37261/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "https://www.redteam-pentesting.de/advisories/rt-sa-2015-004"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://packetstormsecurity.com/files/132236/Alcatel-Lucent-OmniSwitch-Web-Interface-Cross-Site-Request-Forgery.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://seclists.org/fulldisclosure/2015/Jun/23"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/535732/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/75121"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1032544"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "https://www.exploit-db.com/exploits/37261/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "https://www.redteam-pentesting.de/advisories/rt-sa-2015-004"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-352"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.