VAR-202207-1759
Vulnerability from variot - Updated: 2023-12-18 13:55An authentication bypass vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.12, 9.x prior to 9.2.23, 8.x prior to 8.2.28, and controlled release 11.x prior to 11.2.1 allows a remote attacker to bypass authentication into the administration User Interface. This is possible because of SWG incorrectly whitelisting authentication bypass methods and using a weak crypto password. This can lead to the attacker logging into the SWG admin interface, without valid credentials, as the super user with complete control over the SWG. skyhighsecurity of secure web gateway Exists in spoofing authentication evasion vulnerabilities.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202207-1759",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "secure web gateway",
"scope": "gte",
"trust": 1.0,
"vendor": "skyhighsecurity",
"version": "11.0.0"
},
{
"model": "secure web gateway",
"scope": "lt",
"trust": 1.0,
"vendor": "skyhighsecurity",
"version": "9.2.23"
},
{
"model": "secure web gateway",
"scope": "lt",
"trust": 1.0,
"vendor": "skyhighsecurity",
"version": "8.2.28"
},
{
"model": "secure web gateway",
"scope": "lt",
"trust": 1.0,
"vendor": "skyhighsecurity",
"version": "11.2.1"
},
{
"model": "secure web gateway",
"scope": "gte",
"trust": 1.0,
"vendor": "skyhighsecurity",
"version": "9.0.0"
},
{
"model": "secure web gateway",
"scope": "lt",
"trust": 1.0,
"vendor": "skyhighsecurity",
"version": "10.2.12"
},
{
"model": "secure web gateway",
"scope": "gte",
"trust": 1.0,
"vendor": "skyhighsecurity",
"version": "10.0.0"
},
{
"model": "secure web gateway",
"scope": "gte",
"trust": 1.0,
"vendor": "skyhighsecurity",
"version": "8.0.0"
},
{
"model": "secure web gateway",
"scope": "eq",
"trust": 0.8,
"vendor": "skyhighsecurity",
"version": "11.0.0 that\u0027s all 11.2.1"
},
{
"model": "secure web gateway",
"scope": "eq",
"trust": 0.8,
"vendor": "skyhighsecurity",
"version": "10.0.0 that\u0027s all 10.2.12"
},
{
"model": "secure web gateway",
"scope": "eq",
"trust": 0.8,
"vendor": "skyhighsecurity",
"version": "8.0.0 that\u0027s all 8.2.28"
},
{
"model": "secure web gateway",
"scope": "eq",
"trust": 0.8,
"vendor": "skyhighsecurity",
"version": null
},
{
"model": "secure web gateway",
"scope": "eq",
"trust": 0.8,
"vendor": "skyhighsecurity",
"version": "9.0.0 that\u0027s all 9.2.23"
},
{
"model": "secure web gateway",
"scope": null,
"trust": 0.8,
"vendor": "skyhighsecurity",
"version": null
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2022-013876"
},
{
"db": "NVD",
"id": "CVE-2022-2310"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:skyhighsecurity:secure_web_gateway:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "11.2.1",
"versionStartIncluding": "11.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:skyhighsecurity:secure_web_gateway:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "10.2.12",
"versionStartIncluding": "10.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:skyhighsecurity:secure_web_gateway:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "9.2.23",
"versionStartIncluding": "9.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:skyhighsecurity:secure_web_gateway:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "8.2.28",
"versionStartIncluding": "8.0.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2022-2310"
}
]
},
"cve": "CVE-2022-2310",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "trellixpsirt@trellix.com",
"availabilityImpact": "HIGH",
"baseScore": 10.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"impactScore": 6.0,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 9.8,
"baseSeverity": "Critical",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2022-2310",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2022-2310",
"trust": 1.8,
"value": "CRITICAL"
},
{
"author": "trellixpsirt@trellix.com",
"id": "CVE-2022-2310",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "CNNVD",
"id": "CNNVD-202207-2406",
"trust": 0.6,
"value": "CRITICAL"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2022-013876"
},
{
"db": "NVD",
"id": "CVE-2022-2310"
},
{
"db": "NVD",
"id": "CVE-2022-2310"
},
{
"db": "CNNVD",
"id": "CNNVD-202207-2406"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "An authentication bypass vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.12, 9.x prior to 9.2.23, 8.x prior to 8.2.28, and controlled release 11.x prior to 11.2.1 allows a remote attacker to bypass authentication into the administration User Interface. This is possible because of SWG incorrectly whitelisting authentication bypass methods and using a weak crypto password. This can lead to the attacker logging into the SWG admin interface, without valid credentials, as the super user with complete control over the SWG. skyhighsecurity of secure web gateway Exists in spoofing authentication evasion vulnerabilities.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state",
"sources": [
{
"db": "NVD",
"id": "CVE-2022-2310"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013876"
},
{
"db": "VULHUB",
"id": "VHN-430231"
},
{
"db": "VULMON",
"id": "CVE-2022-2310"
}
],
"trust": 1.8
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2022-2310",
"trust": 3.4
},
{
"db": "MCAFEE",
"id": "SB10384",
"trust": 0.9
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013876",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-202207-2406",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-430231",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2022-2310",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-430231"
},
{
"db": "VULMON",
"id": "CVE-2022-2310"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013876"
},
{
"db": "NVD",
"id": "CVE-2022-2310"
},
{
"db": "CNNVD",
"id": "CNNVD-202207-2406"
}
]
},
"id": "VAR-202207-1759",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-430231"
}
],
"trust": 0.01
},
"last_update_date": "2023-12-18T13:55:22.303000Z",
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-290",
"trust": 1.1
},
{
"problemtype": "Avoid authentication by spoofing (CWE-290) [ others ]",
"trust": 0.8
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-430231"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013876"
},
{
"db": "NVD",
"id": "CVE-2022-2310"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.5,
"url": "https://kcm.trellix.com/corporate/index?page=content\u0026id=sb10384\u0026actp=null\u0026viewlocale=en_us\u0026showdraft=false\u0026platinum_status=false\u0026locale=en_us"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2022-2310"
},
{
"trust": 0.6,
"url": "https://cxsecurity.com/cveshow/cve-2022-2310/"
},
{
"trust": 0.6,
"url": "https://vigilance.fr/vulnerability/skyhigh-secure-web-gateway-two-vulnerabilities-38917"
},
{
"trust": 0.1,
"url": "https://kcm.trellix.com/corporate/index?page=content\u0026amp;id=sb10384\u0026amp;actp=null\u0026amp;viewlocale=en_us\u0026amp;showdraft=false\u0026amp;platinum_status=false\u0026amp;locale=en_us"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/290.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-430231"
},
{
"db": "VULMON",
"id": "CVE-2022-2310"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013876"
},
{
"db": "NVD",
"id": "CVE-2022-2310"
},
{
"db": "CNNVD",
"id": "CNNVD-202207-2406"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-430231"
},
{
"db": "VULMON",
"id": "CVE-2022-2310"
},
{
"db": "JVNDB",
"id": "JVNDB-2022-013876"
},
{
"db": "NVD",
"id": "CVE-2022-2310"
},
{
"db": "CNNVD",
"id": "CNNVD-202207-2406"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2022-07-27T00:00:00",
"db": "VULHUB",
"id": "VHN-430231"
},
{
"date": "2022-07-27T00:00:00",
"db": "VULMON",
"id": "CVE-2022-2310"
},
{
"date": "2023-09-12T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2022-013876"
},
{
"date": "2022-07-27T10:15:08.280000",
"db": "NVD",
"id": "CVE-2022-2310"
},
{
"date": "2022-07-26T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202207-2406"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2022-08-02T00:00:00",
"db": "VULHUB",
"id": "VHN-430231"
},
{
"date": "2022-07-27T00:00:00",
"db": "VULMON",
"id": "CVE-2022-2310"
},
{
"date": "2023-09-12T08:20:00",
"db": "JVNDB",
"id": "JVNDB-2022-013876"
},
{
"date": "2023-11-15T19:22:53.120000",
"db": "NVD",
"id": "CVE-2022-2310"
},
{
"date": "2022-08-10T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202207-2406"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202207-2406"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "skyhighsecurity\u00a0 of \u00a0secure\u00a0web\u00a0gateway\u00a0 Spoofing authentication evasion vulnerability in",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2022-013876"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "other",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202207-2406"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…