CVE-2018-17957

The YaST2 RMT module for configuring the SUSE Repository Mirroring Tool (RMT) before 1.1.2 exposed MySQL database passwords on process commandline, allowing local attackers to access or corrupt the RMT database.

CVSS v3 7.8 HIGH
CVSS v2.0 2.1 LOW

7.8^/10

CVSS v3 : HIGH

Vector : AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

2.1^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://bugzilla.suse.com/show_bug.cgi?id=1117602
https://lists.opensuse.org/opensuse-security-announce/2018-12/msg00068.html

Configurations

Configuration 1 (hide)

cpe:2.3:a:suse:repository_mirroring_tool:*:*:*:*:*:*:*:*

History

07 Nov 2023, 02:54

Type	Values Removed	Values Added
References	~~(CONFIRM) https://lists.opensuse.org/opensuse-security-announce/2018-12/msg00068.html - Patch, Third Party Advisory~~	() https://lists.opensuse.org/opensuse-security-announce/2018-12/msg00068.html -
References	~~(CONFIRM) https://bugzilla.suse.com/show_bug.cgi?id=1117602 - Exploit, Issue Tracking, Third Party Advisory~~	() https://bugzilla.suse.com/show_bug.cgi?id=1117602 -

Information

Published : 2018-12-26 15:29

Updated : 2024-02-28 16:48

NVD link : CVE-2018-17957

Mitre link : CVE-2018-17957

CVE.ORG link : CVE-2018-17957

JSON object : View

Products Affected

suse

repository_mirroring_tool

CWE

CWE-287

Improper Authentication

CWE-214

Invocation of Process Using Visible Sensitive Information

{"id": "CVE-2018-17957", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}, {"type": "Secondary", "source": "security@opentext.com", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 3.4, "attackVector": "LOCAL", "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "LOW"}, "impactScore": 2.5, "exploitabilityScore": 0.8}]}, "published": "2018-12-26T15:29:00.297", "references": [{"url": "https://bugzilla.suse.com/show_bug.cgi?id=1117602", "source": "security@opentext.com"}, {"url": "https://lists.opensuse.org/opensuse-security-announce/2018-12/msg00068.html", "source": "security@opentext.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}, {"type": "Secondary", "source": "security@opentext.com", "description": [{"lang": "en", "value": "CWE-214"}]}], "descriptions": [{"lang": "en", "value": "The YaST2 RMT module for configuring the SUSE Repository Mirroring Tool (RMT) before 1.1.2 exposed MySQL database passwords on process commandline, allowing local attackers to access or corrupt the RMT database."}, {"lang": "es", "value": "El m\u00f3dulo YaST2 RMT para configurar SUSE Repository Mirroring Tool (RMT) en versiones anteriores a la 1.1.2 expon\u00eda las contrase\u00f1as de la base de datos de MySQL en la l\u00ednea de comandos del proceso, lo que permite que atacantes locales accedan o corrompan la base de datos RMT."}], "lastModified": "2023-11-07T02:54:36.567", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:suse:repository_mirroring_tool:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF3565FC-46AF-4518-B19F-8BB193853B1A", "versionEndExcluding": "1.1.2"}], "operator": "OR"}]}], "sourceIdentifier": "security@opentext.com"}