CVE-2017-12251

{"id": "CVE-2017-12251", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 9.9, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 3.1}]}, "published": "2017-10-19T08:29:00.217", "references": [{"url": "http://www.securityfocus.com/bid/101487", "tags": ["Third Party Advisory", "VDB Entry"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id/1039613", "tags": ["Third Party Advisory", "VDB Entry"], "source": "ykramarz@cisco.com"}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-ccs", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the web console of the Cisco Cloud Services Platform (CSP) 2100 could allow an authenticated, remote attacker to interact maliciously with the services or virtual machines (VMs) operating remotely on an affected CSP device. The vulnerability is due to weaknesses in the generation of certain authentication mechanisms in the URL of the web console. An attacker could exploit this vulnerability by browsing to one of the hosted VMs' URLs in Cisco CSP and viewing specific patterns that control the web application's mechanisms for authentication control. An exploit could allow the attacker to access a specific VM on the CSP, which causes a complete loss of the system's confidentiality, integrity, and availability. This vulnerability affects Cisco Cloud Services Platform (CSP) 2100 running software release 2.1.0, 2.1.1, 2.1.2, 2.2.0, 2.2.1, or 2.2.2. Cisco Bug IDs: CSCve64690."}, {"lang": "es", "value": "Una vulnerabilidad en la consola web de Cisco Cloud Services Platform (CSP) 2100 podr\u00eda permitir que un atacante remoto autenticado interact\u00fae con fines maliciosos con los servicios o m\u00e1quinas virtuales que operan remotamente en un dispositivo CSP afectado. La vulnerabilidad se debe a una debilidad en la generaci\u00f3n de ciertos mecanismos de autenticaci\u00f3n en la URL de la consola web. Un atacante podr\u00eda explotar esta vulnerabilidad navegando por una de las URL de las m\u00e1quinas virtuales alojadas en Cisco CSP y visualizando patrones espec\u00edficos que controlan los mecanismos de la aplicaci\u00f3n web para el control de autenticaci\u00f3n. Un exploit podr\u00eda permitir que el atacante acceda a una m\u00e1quina virtual espec\u00edfica en el CSP, lo que provoca una p\u00e9rdida completa de la confidencialidad, integridad y disponibilidad del sistema. Esta vulnerabilidad afecta a Cisco Cloud Services Platform (CSP) 2100 cuando ejecuta las distribuciones de software 2.1.0, 2.1.1, 2.1.2, 2.2.0, 2.2.1 o 2.2.2. Cisco Bug IDs: CSCve64690."}], "lastModified": "2019-10-09T23:22:45.107", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:cloud_services_platform_2100:2.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1970EA0-E541-4594-84A9-39A4242FAB42"}, {"criteria": "cpe:2.3:a:cisco:cloud_services_platform_2100:2.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "29718258-B19E-44F4-B7CA-534371926004"}, {"criteria": "cpe:2.3:a:cisco:cloud_services_platform_2100:2.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF022130-6341-4F33-9793-FF90B86F3C6E"}, {"criteria": "cpe:2.3:a:cisco:cloud_services_platform_2100:2.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07544450-7C3E-40A9-A619-1544120FB6B2"}, {"criteria": "cpe:2.3:a:cisco:cloud_services_platform_2100:2.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C8E19BA-5E10-4E3D-A63C-BB5643F3BBDA"}, {"criteria": "cpe:2.3:a:cisco:cloud_services_platform_2100:2.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4170C700-6EE6-49B9-B994-4523EE6583E7"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}