CVE-2019-3790

The Pivotal Ops Manager, 2.2.x versions prior to 2.2.23, 2.3.x versions prior to 2.3.16, 2.4.x versions prior to 2.4.11, and 2.5.x versions prior to 2.5.3, contain configuration that circumvents refresh token expiration. A remote authenticated user can gain access to a browser session that was supposed to have expired, and access Ops Manager resources.

CVSS v3 6.1 MEDIUM
CVSS v2.0 5.5 MEDIUM

6.1^/10

CVSS v3 : MEDIUM

Vector : AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

Exploitability : 0.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

5.5^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:P/I:P/A:N

Exploitability : 8.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://www.securityfocus.com/bid/108512	Third Party Advisory VDB Entry
https://pivotal.io/security/cve-2019-3790	Vendor Advisory
http://www.securityfocus.com/bid/108512	Third Party Advisory VDB Entry
https://pivotal.io/security/cve-2019-3790	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:pivotal_software:operations_manager::::::::
	cpe:2.3:a:pivotal_software:operations_manager::::::::
	cpe:2.3:a:pivotal_software:operations_manager::::::::
	cpe:2.3:a:pivotal_software:operations_manager::::::::

History

21 Nov 2024, 04:42

Type	Values Removed	Values Added
References	~~() http://www.securityfocus.com/bid/108512 - Third Party Advisory, VDB Entry~~	() http://www.securityfocus.com/bid/108512 - Third Party Advisory, VDB Entry
References	~~() https://pivotal.io/security/cve-2019-3790 - Vendor Advisory~~	() https://pivotal.io/security/cve-2019-3790 - Vendor Advisory
CVSS	v2 : ~~5.5~~ v3 : ~~5.4~~	v2 : 5.5 v3 : 6.1

Information

Published : 2019-06-06 19:29

Updated : 2024-11-21 04:42

NVD link : CVE-2019-3790

Mitre link : CVE-2019-3790

CVE.ORG link : CVE-2019-3790

JSON object : View

Products Affected

pivotal_software

operations_manager

CWE

CWE-324

Use of a Key Past its Expiration Date

CWE-613

Insufficient Session Expiration

{"id": "CVE-2019-3790", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Secondary", "source": "security_alert@emc.com", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 0.9}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.5, "exploitabilityScore": 2.8}]}, "published": "2019-06-06T19:29:00.783", "references": [{"url": "http://www.securityfocus.com/bid/108512", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "https://pivotal.io/security/cve-2019-3790", "tags": ["Vendor Advisory"], "source": "security_alert@emc.com"}, {"url": "http://www.securityfocus.com/bid/108512", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://pivotal.io/security/cve-2019-3790", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security_alert@emc.com", "description": [{"lang": "en", "value": "CWE-324"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-613"}]}], "descriptions": [{"lang": "en", "value": "The Pivotal Ops Manager, 2.2.x versions prior to 2.2.23, 2.3.x versions prior to 2.3.16, 2.4.x versions prior to 2.4.11, and 2.5.x versions prior to 2.5.3, contain configuration that circumvents refresh token expiration. A remote authenticated user can gain access to a browser session that was supposed to have expired, and access Ops Manager resources."}, {"lang": "es", "value": "El Pivotal Ops Manager, versiones 2.2.x anteriores a 2.2.23, 2.3.x versiones anteriores a 2.3.16, 2.4.x versiones anteriores a 2.4.11, y 2.5.x versiones anteriores a 2.5.3, contienen configuraciones que eluden actualizar el vencimiento del token. Un usuario identificado de forma remota puede obtener acceso a una sesi\u00f3n del navegador que supuestamente ha caducado y acceder a los recursos de Ops Manager."}], "lastModified": "2024-11-21T04:42:32.917", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:pivotal_software:operations_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FC149AE-880F-4995-8F68-E93EA9E25B0D", "versionEndExcluding": "2.2.23", "versionStartIncluding": "2.2.0"}, {"criteria": "cpe:2.3:a:pivotal_software:operations_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "21C2E924-03FF-40F2-ADD6-BD6557170F45", "versionEndExcluding": "2.3.16", "versionStartIncluding": "2.3.0"}, {"criteria": "cpe:2.3:a:pivotal_software:operations_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DF98531-7260-4A37-9A69-2F568AC8105B", "versionEndExcluding": "2.4.11", "versionStartIncluding": "2.4.0"}, {"criteria": "cpe:2.3:a:pivotal_software:operations_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F238AF7-C3FD-4FAD-943C-196CD520518D", "versionEndExcluding": "2.5.3", "versionStartIncluding": "2.5.0"}], "operator": "OR"}]}], "sourceIdentifier": "security_alert@emc.com"}