github - ghsa-mxp7-4prx-2v6g

ghsa-mxp7-4prx-2v6g

Vulnerability from github

Published

2022-05-24 19:08

Modified

2022-05-24 19:08

Details

Juniper Networks Contrail Cloud (CC) releases prior to 13.6.0 have RabbitMQ service enabled by default with hardcoded credentials. The messaging services of RabbitMQ are used when coordinating operations and status information among Contrail services. An attacker with access to an administrative service for RabbitMQ (e.g. GUI), can use these hardcoded credentials to cause a Denial of Service (DoS) or have access to unspecified sensitive system information. This issue affects the Juniper Networks Contrail Cloud releases on versions prior to 13.6.0.

Show details on source website

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-0279"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-798"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-07-15T20:15:00Z",
    "severity": "HIGH"
  },
  "details": "Juniper Networks Contrail Cloud (CC) releases prior to 13.6.0 have RabbitMQ service enabled by default with hardcoded credentials. The messaging services of RabbitMQ are used when coordinating operations and status information among Contrail services. An attacker with access to an administrative service for RabbitMQ (e.g. GUI), can use these hardcoded credentials to cause a Denial of Service (DoS) or have access to unspecified sensitive system information. This issue affects the Juniper Networks Contrail Cloud releases on versions prior to 13.6.0.",
  "id": "GHSA-mxp7-4prx-2v6g",
  "modified": "2022-05-24T19:08:07Z",
  "published": "2022-05-24T19:08:07Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-0279"
    },
    {
      "type": "WEB",
      "url": "https://kb.juniper.net/JSA11183"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CVE-2021-0279 (GCVE-0-2021-0279)

Vulnerability from cvelistv5

Published

2021-07-15 20:00

Modified

2024-09-17 01:06

Severity ?

8.6 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

CWE

CWE-798 - Use of Hard-coded Credentials

Summary

Juniper Networks Contrail Cloud (CC) releases prior to 13.6.0 have RabbitMQ service enabled by default with hardcoded credentials. The messaging services of RabbitMQ are used when coordinating operations and status information among Contrail services. An attacker with access to an administrative service for RabbitMQ (e.g. GUI), can use these hardcoded credentials to cause a Denial of Service (DoS) or have access to unspecified sensitive system information. This issue affects the Juniper Networks Contrail Cloud releases on versions prior to 13.6.0.

References

URL

Tags

https://kb.juniper.net/JSA11183

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Juniper Networks	Contrail Cloud	Version: unspecified < 13.6.0

Show details on NVD website

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:32:10.506Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kb.juniper.net/JSA11183"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Contrail Cloud",
          "vendor": "Juniper Networks",
          "versions": [
            {
              "lessThan": "13.6.0",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2021-07-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Juniper Networks Contrail Cloud (CC) releases prior to 13.6.0 have RabbitMQ service enabled by default with hardcoded credentials. The messaging services of RabbitMQ are used when coordinating operations and status information among Contrail services. An attacker with access to an administrative service for RabbitMQ (e.g. GUI), can use these hardcoded credentials to cause a Denial of Service (DoS) or have access to unspecified sensitive system information. This issue affects the Juniper Networks Contrail Cloud releases on versions prior to 13.6.0."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-798",
              "description": "CWE-798 Use of Hard-coded Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-07-15T20:00:50",
        "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "shortName": "juniper"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kb.juniper.net/JSA11183"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "The following software releases have been updated to resolve this specific issue: Juniper Networks Contrail Cloud version 13.6.0, and all subsequent releases.\n\nWhen installing Contrail Cloud version 13.6.0, to set a non-default password for RabbitMQ, one of these options are possible:\na) You may set a non-default password using the config/vault-data.yml file.\nb) Or following configuration should be added to the CC site.yml file:\n\n   extra_config:\n      ContrailAnalyticsParameters:\n        ContrailSettings:\n          RABBITMQ_PASSWORD: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027password\u0027] }}\"\n          RABBITMQ_USER: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027user\u0027] }}\"\n      ContrailControllerParameters:\n        ContrailSettings:\n          RABBITMQ_PASSWORD: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027password\u0027] }}\"\n          RABBITMQ_USER: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027user\u0027] }}\"\n\nContact Juniper Networks Technical Assistance Center (JTAC) for guided assistance if necessary."
        }
      ],
      "source": {
        "advisory": "JSA11183",
        "defect": [
          "CC-773"
        ],
        "discovery": "USER"
      },
      "title": "Contrail Cloud: Hardcoded credentials for RabbitMQ service",
      "workarounds": [
        {
          "lang": "en",
          "value": "To mitigate this issue with a fresh installation of Contrail Cloud version prior to 13.6.0, the following configuration options should be added to the CC site.yml file.\n\n  extra_config:\n      ContrailAnalyticsParameters:\n        ContrailSettings:\n          RABBITMQ_PASSWORD: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027password\u0027] }}\"\n          RABBITMQ_USER: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027user\u0027] }}\"\n      ContrailControllerParameters:\n        ContrailSettings:\n          RABBITMQ_PASSWORD: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027password\u0027] }}\"\n          RABBITMQ_USER: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027user\u0027] }}\"\n\nPlease contact Juniper Networks Technical Assistance Center (JTAC) for guided assistance if necessary.\n\nUntil a fresh installation or upgrade is possible, to reduce the risk of exploitation utilize common security BCPs to limit the exploitable surface by limiting access to network and device to trusted systems, administrators, networks and hosts."
        }
      ],
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "sirt@juniper.net",
          "DATE_PUBLIC": "2021-07-14T16:00:00.000Z",
          "ID": "CVE-2021-0279",
          "STATE": "PUBLIC",
          "TITLE": "Contrail Cloud: Hardcoded credentials for RabbitMQ service"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Contrail Cloud",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_value": "13.6.0"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Juniper Networks"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Juniper Networks Contrail Cloud (CC) releases prior to 13.6.0 have RabbitMQ service enabled by default with hardcoded credentials. The messaging services of RabbitMQ are used when coordinating operations and status information among Contrail services. An attacker with access to an administrative service for RabbitMQ (e.g. GUI), can use these hardcoded credentials to cause a Denial of Service (DoS) or have access to unspecified sensitive system information. This issue affects the Juniper Networks Contrail Cloud releases on versions prior to 13.6.0."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-798 Use of Hard-coded Credentials"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://kb.juniper.net/JSA11183",
              "refsource": "CONFIRM",
              "url": "https://kb.juniper.net/JSA11183"
            }
          ]
        },
        "solution": [
          {
            "lang": "en",
            "value": "The following software releases have been updated to resolve this specific issue: Juniper Networks Contrail Cloud version 13.6.0, and all subsequent releases.\n\nWhen installing Contrail Cloud version 13.6.0, to set a non-default password for RabbitMQ, one of these options are possible:\na) You may set a non-default password using the config/vault-data.yml file.\nb) Or following configuration should be added to the CC site.yml file:\n\n   extra_config:\n      ContrailAnalyticsParameters:\n        ContrailSettings:\n          RABBITMQ_PASSWORD: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027password\u0027] }}\"\n          RABBITMQ_USER: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027user\u0027] }}\"\n      ContrailControllerParameters:\n        ContrailSettings:\n          RABBITMQ_PASSWORD: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027password\u0027] }}\"\n          RABBITMQ_USER: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027user\u0027] }}\"\n\nContact Juniper Networks Technical Assistance Center (JTAC) for guided assistance if necessary."
          }
        ],
        "source": {
          "advisory": "JSA11183",
          "defect": [
            "CC-773"
          ],
          "discovery": "USER"
        },
        "work_around": [
          {
            "lang": "en",
            "value": "To mitigate this issue with a fresh installation of Contrail Cloud version prior to 13.6.0, the following configuration options should be added to the CC site.yml file.\n\n  extra_config:\n      ContrailAnalyticsParameters:\n        ContrailSettings:\n          RABBITMQ_PASSWORD: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027password\u0027] }}\"\n          RABBITMQ_USER: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027user\u0027] }}\"\n      ContrailControllerParameters:\n        ContrailSettings:\n          RABBITMQ_PASSWORD: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027password\u0027] }}\"\n          RABBITMQ_USER: \"{{ vault[\u0027other\u0027][\u0027credentials\u0027][\u0027contrail_rabbit\u0027][\u0027user\u0027] }}\"\n\nPlease contact Juniper Networks Technical Assistance Center (JTAC) for guided assistance if necessary.\n\nUntil a fresh installation or upgrade is possible, to reduce the risk of exploitation utilize common security BCPs to limit the exploitable surface by limiting access to network and device to trusted systems, administrators, networks and hosts."
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
    "assignerShortName": "juniper",
    "cveId": "CVE-2021-0279",
    "datePublished": "2021-07-15T20:00:50.653467Z",
    "dateReserved": "2020-10-27T00:00:00",
    "dateUpdated": "2024-09-17T01:06:11.249Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Log in or create an account to share your comment.

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.