cnvd - cnvd-2019-07890

cnvd-2019-07890

Vulnerability from cnvd

Title: Pivotal Software Pivotal Application Service信息泄露漏洞

Description:

Pivotal Software Pivotal Application Service（PAS）是美国Pivotal Software公司的一套应用程序管理软件。

Pivotal Software PAS 2.2.12之前的2.2.x版本、2.3.7之前的2.3.x版本和2.4.3之前的2.4.x版本中存在安全漏洞，该漏洞源于使用云控制器代理的应用程序管理器未能验证SSL凭证。远程攻击者可通过劫持云控制器的DNS记录利用该漏洞拦截发送到Cloud Controller的访问令牌，进而访问到云控制器中用户的资源。

Severity: 中

Patch Name: Pivotal Software Pivotal Application Service信息泄露漏洞的补丁

Patch Description:

Pivotal Software Pivotal Application Service（PAS）是美国Pivotal Software公司的一套应用程序管理软件。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://pivotal.io/security/cve-2019-3777

Reference: https://nvd.nist.gov/vuln/detail/CVE-2019-3777

Impacted products

Name
['Pivotal Software Pivotal Application Service 2.4.;<2.4.3', 'Pivotal Software Pivotal Application Service 2.3.;<2.3.7', 'Pivotal Software Pivotal Application Service 2.2.*;<2.2.12']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "107214"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-3777",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3777"
    }
  },
  "description": "Pivotal Software Pivotal Application Service\uff08PAS\uff09\u662f\u7f8e\u56fdPivotal Software\u516c\u53f8\u7684\u4e00\u5957\u5e94\u7528\u7a0b\u5e8f\u7ba1\u7406\u8f6f\u4ef6\u3002\n\nPivotal Software PAS 2.2.12\u4e4b\u524d\u76842.2.x\u7248\u672c\u30012.3.7\u4e4b\u524d\u76842.3.x\u7248\u672c\u548c2.4.3\u4e4b\u524d\u76842.4.x\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u4f7f\u7528\u4e91\u63a7\u5236\u5668\u4ee3\u7406\u7684\u5e94\u7528\u7a0b\u5e8f\u7ba1\u7406\u5668\u672a\u80fd\u9a8c\u8bc1SSL\u51ed\u8bc1\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u52ab\u6301\u4e91\u63a7\u5236\u5668\u7684DNS\u8bb0\u5f55\u5229\u7528\u8be5\u6f0f\u6d1e\u62e6\u622a\u53d1\u9001\u5230Cloud Controller\u7684\u8bbf\u95ee\u4ee4\u724c\uff0c\u8fdb\u800c\u8bbf\u95ee\u5230\u4e91\u63a7\u5236\u5668\u4e2d\u7528\u6237\u7684\u8d44\u6e90\u3002",
  "discovererName": "Pivotal Software",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://pivotal.io/security/cve-2019-3777",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-07890",
  "openTime": "2019-03-22",
  "patchDescription": "Pivotal Software Pivotal Application Service\uff08PAS\uff09\u662f\u7f8e\u56fdPivotal Software\u516c\u53f8\u7684\u4e00\u5957\u5e94\u7528\u7a0b\u5e8f\u7ba1\u7406\u8f6f\u4ef6\u3002\r\n\r\nPivotal Software PAS 2.2.12\u4e4b\u524d\u76842.2.x\u7248\u672c\u30012.3.7\u4e4b\u524d\u76842.3.x\u7248\u672c\u548c2.4.3\u4e4b\u524d\u76842.4.x\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u4f7f\u7528\u4e91\u63a7\u5236\u5668\u4ee3\u7406\u7684\u5e94\u7528\u7a0b\u5e8f\u7ba1\u7406\u5668\u672a\u80fd\u9a8c\u8bc1SSL\u51ed\u8bc1\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u52ab\u6301\u4e91\u63a7\u5236\u5668\u7684DNS\u8bb0\u5f55\u5229\u7528\u8be5\u6f0f\u6d1e\u62e6\u622a\u53d1\u9001\u5230Cloud Controller\u7684\u8bbf\u95ee\u4ee4\u724c\uff0c\u8fdb\u800c\u8bbf\u95ee\u5230\u4e91\u63a7\u5236\u5668\u4e2d\u7528\u6237\u7684\u8d44\u6e90\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Pivotal Software Pivotal Application Service\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Pivotal Software Pivotal Application Service 2.4.*;\u003c2.4.3",
      "Pivotal Software Pivotal Application Service 2.3.*;\u003c2.3.7",
      "Pivotal Software Pivotal Application Service 2.2.*;\u003c2.2.12"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2019-3777",
  "serverity": "\u4e2d",
  "submitTime": "2019-03-13",
  "title": "Pivotal Software Pivotal Application Service\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2019-3777 (GCVE-0-2019-3777)

Vulnerability from cvelistv5

Published

2019-03-07 19:00

Modified

2024-09-16 21:56

Severity ?

8.0 (High) - CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N

CWE

CWE-295 - Improper Certificate Validation

Summary

Pivotal Application Service (PAS), versions 2.2.x prior to 2.2.12, 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.3, contain apps manager that uses a cloud controller proxy that fails to verify SSL certs. A remote unauthenticated attacker that could hijack the Cloud Controller's DNS record could intercept access tokens sent to the Cloud Controller, giving the attacker access to the user's resources in the Cloud Controller

References

▼	URL	Tags
	http://www.securityfocus.com/bid/107214	vdb-entry, x_refsource_BID
	https://pivotal.io/security/cve-2019-3777	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

▼

Pivotal

Apps Manager

Version: 666   < 666.0.19
Version: 665   < 665.0.26
Version: 667   < 667.0.5

Pivotal

Pivotal Application Service

Version: 2.4   < 2.4.3
Version: 2.3   < 2.3.7
Version: 2.2   < 2.2.12

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T19:19:18.134Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "107214",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/107214"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://pivotal.io/security/cve-2019-3777"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apps Manager",
          "vendor": "Pivotal",
          "versions": [
            {
              "lessThan": "666.0.19",
              "status": "affected",
              "version": "666",
              "versionType": "custom"
            },
            {
              "lessThan": "665.0.26",
              "status": "affected",
              "version": "665",
              "versionType": "custom"
            },
            {
              "lessThan": "667.0.5",
              "status": "affected",
              "version": "667",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "Pivotal Application Service",
          "vendor": "Pivotal",
          "versions": [
            {
              "lessThan": "2.4.3",
              "status": "affected",
              "version": "2.4",
              "versionType": "custom"
            },
            {
              "lessThan": "2.3.7",
              "status": "affected",
              "version": "2.3",
              "versionType": "custom"
            },
            {
              "lessThan": "2.2.12",
              "status": "affected",
              "version": "2.2",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2019-02-26T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Pivotal Application Service (PAS), versions 2.2.x prior to 2.2.12, 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.3, contain apps manager that uses a cloud controller proxy that fails to verify SSL certs. A remote unauthenticated attacker that could hijack the Cloud Controller\u0027s DNS record could intercept access tokens sent to the Cloud Controller, giving the attacker access to the user\u0027s resources in the Cloud Controller"
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-295",
              "description": "CWE-295: Improper Certificate Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-03-08T10:57:01",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "name": "107214",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/107214"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://pivotal.io/security/cve-2019-3777"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Apps Manager unverified SSL certs in Cloud Controller proxy",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security_alert@emc.com",
          "DATE_PUBLIC": "2019-02-26T23:47:49.000Z",
          "ID": "CVE-2019-3777",
          "STATE": "PUBLIC",
          "TITLE": "Apps Manager unverified SSL certs in Cloud Controller proxy"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apps Manager",
                      "version": {
                        "version_data": [
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "666",
                            "version_value": "666.0.19"
                          },
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "665",
                            "version_value": "665.0.26"
                          },
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "667",
                            "version_value": "667.0.5"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Pivotal Application Service",
                      "version": {
                        "version_data": [
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "2.4",
                            "version_value": "2.4.3"
                          },
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "2.3",
                            "version_value": "2.3.7"
                          },
                          {
                            "affected": "\u003c",
                            "version_affected": "\u003c",
                            "version_name": "2.2",
                            "version_value": "2.2.12"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Pivotal"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Pivotal Application Service (PAS), versions 2.2.x prior to 2.2.12, 2.3.x prior to 2.3.7 and 2.4.x prior to 2.4.3, contain apps manager that uses a cloud controller proxy that fails to verify SSL certs. A remote unauthenticated attacker that could hijack the Cloud Controller\u0027s DNS record could intercept access tokens sent to the Cloud Controller, giving the attacker access to the user\u0027s resources in the Cloud Controller"
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-295: Improper Certificate Validation"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "107214",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/107214"
            },
            {
              "name": "https://pivotal.io/security/cve-2019-3777",
              "refsource": "CONFIRM",
              "url": "https://pivotal.io/security/cve-2019-3777"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2019-3777",
    "datePublished": "2019-03-07T19:00:00Z",
    "dateReserved": "2019-01-03T00:00:00",
    "dateUpdated": "2024-09-16T21:56:55.392Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted