CVE-2021-32077

Primary Source Verification in VerityStream MSOW Solutions before 3.1.1 allows an anonymous internet user to discover Social Security Number (SSN) values via a brute-force attack on a (sometimes hidden) search field, because the last four SSN digits are part of the supported combination of search selectors. This discloses doctors' and nurses' social security numbers and PII.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://www.marbasec.com/blog/cve-2021-32077-fun-with-social-security-numbers	Exploit Third Party Advisory
https://www.veritystream.com/legacy/msow-solutions	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:veritystream:msow_solutions:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-05-06 23:15

Updated : 2024-02-28 18:28

NVD link : CVE-2021-32077

Mitre link : CVE-2021-32077

CVE.ORG link : CVE-2021-32077

JSON object : View

Products Affected

veritystream

msow_solutions

CWE

NVD-CWE-Other

{"id": "CVE-2021-32077", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2021-05-06T23:15:07.850", "references": [{"url": "https://www.marbasec.com/blog/cve-2021-32077-fun-with-social-security-numbers", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.veritystream.com/legacy/msow-solutions", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Primary Source Verification in VerityStream MSOW Solutions before 3.1.1 allows an anonymous internet user to discover Social Security Number (SSN) values via a brute-force attack on a (sometimes hidden) search field, because the last four SSN digits are part of the supported combination of search selectors. This discloses doctors' and nurses' social security numbers and PII."}, {"lang": "es", "value": "Primary Source Verification en VerityStream MSOW Solutions versiones anteriores a 3.1.1, permite a un usuario de Internet an\u00f3nimo detectar los valores del Social Security Number (SSN) por medio de un ataque de fuerza bruta en un campo de b\u00fasqueda (a veces oculto), porque los \u00faltimos cuatro d\u00edgitos del SSN son parte del combinaci\u00f3n compatible de selectores de b\u00fasqueda. Esto divulga los n\u00fameros de seguro social y la PII de los m\u00e9dicos y enfermeras"}], "lastModified": "2022-07-12T17:42:04.277", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:veritystream:msow_solutions:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0512880A-2895-44AD-9080-D90DDD3E15D1", "versionEndExcluding": "3.1.1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}