cnvd - cnvd-2017-32120

cnvd-2017-32120

Vulnerability from cnvd

Title: Cisco WebEx Meeting Center信息泄露漏洞（CNVD-2017-32120）

Description:

Cisco Jabber是美国思科（Cisco）公司的一套跨设备协作系统。该系统提供语音、视频、桌面共享和会议等功能。

Cisco Jabber中的Web界面存在信息泄露漏洞，该漏洞源于程序缺少输入和验证检测。本地攻击者可通过向受影响系统进行身份验证后发送命令，检索用户配置文件信息。

Severity: 中

Patch Name: Cisco WebEx Meeting Center信息泄露漏洞（CNVD-2017-32120）的补丁

Patch Description:

Cisco Jabber是美国思科（Cisco）公司的一套跨设备协作系统。该系统提供语音、视频、桌面共享和会议等功能。

Cisco Jabber中的Web界面存在信息泄露漏洞，该漏洞源于程序缺少输入和验证检测。本地攻击者可通过向受影响系统进行身份验证后发送命令，检索用户配置文件信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-jab1

Reference: https://securitytracker.com/id/1039625 http://www.securityfocus.com/bid/101515

Impacted products

Name
['Cisco WebEx Meeting Center WAPI 1.9.26', 'Cisco Jabber 1.9.30']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "101515"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-12286",
      "cveUrl": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12286"
    }
  },
  "description": "Cisco Jabber\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u8de8\u8bbe\u5907\u534f\u4f5c\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u63d0\u4f9b\u8bed\u97f3\u3001\u89c6\u9891\u3001\u684c\u9762\u5171\u4eab\u548c\u4f1a\u8bae\u7b49\u529f\u80fd\u3002\r\n\r\nCisco Jabber\u4e2d\u7684Web\u754c\u9762\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u7f3a\u5c11\u8f93\u5165\u548c\u9a8c\u8bc1\u68c0\u6d4b\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411\u53d7\u5f71\u54cd\u7cfb\u7edf\u8fdb\u884c\u8eab\u4efd\u9a8c\u8bc1\u540e\u53d1\u9001\u547d\u4ee4\uff0c\u68c0\u7d22\u7528\u6237\u914d\u7f6e\u6587\u4ef6\u4fe1\u606f\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5:\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-jab1",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-32120",
  "openTime": "2017-10-31",
  "patchDescription": "Cisco Jabber\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u8de8\u8bbe\u5907\u534f\u4f5c\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u63d0\u4f9b\u8bed\u97f3\u3001\u89c6\u9891\u3001\u684c\u9762\u5171\u4eab\u548c\u4f1a\u8bae\u7b49\u529f\u80fd\u3002\r\n\r\nCisco Jabber\u4e2d\u7684Web\u754c\u9762\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u7f3a\u5c11\u8f93\u5165\u548c\u9a8c\u8bc1\u68c0\u6d4b\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411\u53d7\u5f71\u54cd\u7cfb\u7edf\u8fdb\u884c\u8eab\u4efd\u9a8c\u8bc1\u540e\u53d1\u9001\u547d\u4ee4\uff0c\u68c0\u7d22\u7528\u6237\u914d\u7f6e\u6587\u4ef6\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco WebEx Meeting Center\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2017-32120\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco WebEx Meeting Center WAPI 1.9.26",
      "Cisco Jabber 1.9.30"
    ]
  },
  "referenceLink": "https://securitytracker.com/id/1039625\r\nhttp://www.securityfocus.com/bid/101515",
  "serverity": "\u4e2d",
  "submitTime": "2017-10-20",
  "title": "Cisco WebEx Meeting Center\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2017-32120\uff09"
}

CVE-2017-12286 (GCVE-0-2017-12286)

Vulnerability from cvelistv5

Published

2017-10-19 08:00

Modified

2024-08-05 18:36

Severity ?

CWE

CWE-20

Summary

A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to retrieve user profile information from the affected software, which could lead to the disclosure of confidential information. The vulnerability is due to a lack of input and validation checks in the affected software. An attacker could exploit this vulnerability by authenticating locally to an affected system and then issuing specific commands to the affected software. A successful exploit could allow the attacker to view all profile information for a user instead of only certain Jabber parameters that should be visible. This vulnerability affects all releases of Cisco Jabber prior to Release 1.9.31. Cisco Bug IDs: CSCve52418.

References

▼	URL	Tags
	http://www.securitytracker.com/id/1039625	vdb-entry, x_refsource_SECTRACK
	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-jab1	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/101515	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	n/a	Cisco Jabber	Version: Cisco Jabber

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T18:36:55.355Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1039625",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1039625"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-jab1"
          },
          {
            "name": "101515",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/101515"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Jabber",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cisco Jabber"
            }
          ]
        }
      ],
      "datePublic": "2017-10-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to retrieve user profile information from the affected software, which could lead to the disclosure of confidential information. The vulnerability is due to a lack of input and validation checks in the affected software. An attacker could exploit this vulnerability by authenticating locally to an affected system and then issuing specific commands to the affected software. A successful exploit could allow the attacker to view all profile information for a user instead of only certain Jabber parameters that should be visible. This vulnerability affects all releases of Cisco Jabber prior to Release 1.9.31. Cisco Bug IDs: CSCve52418."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-10-24T09:57:02",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "1039625",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1039625"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-jab1"
        },
        {
          "name": "101515",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/101515"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2017-12286",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco Jabber",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cisco Jabber"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to retrieve user profile information from the affected software, which could lead to the disclosure of confidential information. The vulnerability is due to a lack of input and validation checks in the affected software. An attacker could exploit this vulnerability by authenticating locally to an affected system and then issuing specific commands to the affected software. A successful exploit could allow the attacker to view all profile information for a user instead of only certain Jabber parameters that should be visible. This vulnerability affects all releases of Cisco Jabber prior to Release 1.9.31. Cisco Bug IDs: CSCve52418."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1039625",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1039625"
            },
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-jab1",
              "refsource": "CONFIRM",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-jab1"
            },
            {
              "name": "101515",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/101515"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2017-12286",
    "datePublished": "2017-10-19T08:00:00",
    "dateReserved": "2017-08-03T00:00:00",
    "dateUpdated": "2024-08-05T18:36:55.355Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted