CVE-2018-15759

Pivotal Cloud Foundry On Demand Services SDK, versions prior to 0.24 contain an insecure method of verifying credentials. A remote unauthenticated malicious user may make many requests to the service broker with different credentials, allowing them to infer valid credentials and gain access to perform broker operations.

CVSS v3 9.1 CRITICAL
CVSS v2.0 5.0 MEDIUM

9.1^/10

CVSS v3 : CRITICAL

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Exploitability : 3.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.securityfocus.com/bid/106019	Third Party Advisory VDB Entry
https://pivotal.io/security/cve-2018-15759	Vendor Advisory
http://www.securityfocus.com/bid/106019	Third Party Advisory VDB Entry
https://pivotal.io/security/cve-2018-15759	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:pivotal_software:broker_api::::::::
	cpe:2.3:a:pivotal_software:on_demand_services_sdk::::::::

History

21 Nov 2024, 03:51

Type	Values Removed	Values Added
References	~~() http://www.securityfocus.com/bid/106019 - Third Party Advisory, VDB Entry~~	() http://www.securityfocus.com/bid/106019 - Third Party Advisory, VDB Entry
References	~~() https://pivotal.io/security/cve-2018-15759 - Vendor Advisory~~	() https://pivotal.io/security/cve-2018-15759 - Vendor Advisory
CVSS	v2 : ~~5.0~~ v3 : ~~9.8~~	v2 : 5.0 v3 : 9.1

Information

Published : 2018-11-19 14:29

Updated : 2024-11-21 03:51

NVD link : CVE-2018-15759

Mitre link : CVE-2018-15759

CVE.ORG link : CVE-2018-15759

JSON object : View

Products Affected

pivotal_software

broker_api
on_demand_services_sdk

CWE

CWE-307

Improper Restriction of Excessive Authentication Attempts

{"id": "CVE-2018-15759", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Secondary", "source": "security_alert@emc.com", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 3.9}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2018-11-19T14:29:00.343", "references": [{"url": "http://www.securityfocus.com/bid/106019", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "https://pivotal.io/security/cve-2018-15759", "tags": ["Vendor Advisory"], "source": "security_alert@emc.com"}, {"url": "http://www.securityfocus.com/bid/106019", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://pivotal.io/security/cve-2018-15759", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-307"}]}], "descriptions": [{"lang": "en", "value": "Pivotal Cloud Foundry On Demand Services SDK, versions prior to 0.24 contain an insecure method of verifying credentials. A remote unauthenticated malicious user may make many requests to the service broker with different credentials, allowing them to infer valid credentials and gain access to perform broker operations."}, {"lang": "es", "value": "Pivotal Cloud Foundry On Demand Services SDK, en versiones anteriores a la 0.24 contiene un m\u00e9todo inseguro de verificaci\u00f3n de credenciales. Un usuario malicioso remoto no autenticado podr\u00eda realizar m\u00faltiples peticiones al broker del servicio con diferentes credenciales, lo que le permite inferir credenciales v\u00e1lidas y obtener acceso para realizar operaciones del broker."}], "lastModified": "2024-11-21T03:51:25.040", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:pivotal_software:broker_api:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B325D548-8556-491F-B346-3E62884C41CB", "versionEndExcluding": "3.0.2"}, {"criteria": "cpe:2.3:a:pivotal_software:on_demand_services_sdk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D0E7CA4-8DBE-43A1-A184-42C4402C21DC", "versionEndExcluding": "0.24.0"}], "operator": "OR"}]}], "sourceIdentifier": "security_alert@emc.com"}