Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:214283
HistoryMar 16, 2017 - 12:00 a.m.

Commvault Edge contains a buffer overflow vulnerability

2017-03-1600:00:00
www.kb.cert.org
39

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.035 Low

EPSS

Percentile

91.5%

JSON

Overview

Commvault Edge, version 11 SP6 (11.80.50.0), is vulnerable to a stack-based buffer overflow vulnerability.

Description

CWE-121: Stack-based Buffer Overflow - CVE-2017-3195

A stack based buffer overflow in the Commvault Edge Communication Service (cvd) allows remote attackers to execute arbitrary code via crafted packets, exploiting weaknesses in the key exchange mechanism. Access to TCP port 8400 (by default) on the target machine is necessary to exploit this vulnerability.

Impact

An unauthenticated remote attacker can execute arbitrary code with root/SYSTEM privileges.

Solution

Apply an update
Commvault has provided fixes in the latest service pack (SP7 and above) to address the vulnerability. SP6 customers can use hotfix 590.

Vendor Information

214283

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Commvault Affected

Notified: January 24, 2017 Updated: March 16, 2017

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

CVSS Metrics

Group Score Vector
Base 10 AV:N/AC:L/Au:N/C:C/I:C/A:C
Temporal 7.8 E:POC/RL:OF/RC:C
Environmental 2.0 CDP:ND/TD:L/CR:ND/IR:ND/AR:ND

References

Acknowledgements

Thanks to Claudio Moletta for reporting this vulnerability.

This document was written by Trent Novelly.

Other Information

CVE IDs: CVE-2017-3195
Date Public: 2017-03-15 Date First Published:

Related

cve 2
prion 2
nvd 2
zdt 1
cvelist 2
nessus 2
cve
cve
CVE-2017-3195
2017-12-16 02:29:10
CVE-2017-18044
2018-01-19 17:29:00
prion
prion
Stack overflow
2017-12-16 02:29:00
Command injection
2018-01-19 17:29:00
nvd
nvd
CVE-2017-3195
2017-12-16 02:29:10
CVE-2017-18044
2018-01-19 17:29:00
zdt
zdt
CommVault Edge 11 SP6 - Stack Buffer Overflow (PoC) Exploit
2017-04-06 00:00:00
cvelist
cvelist
CVE-2017-3195
2017-12-15 14:00:00
CVE-2017-18044
2018-01-19 17:00:00
nessus
nessus
Commvault 11 < 11 SP7 Multiple Vulnerabilities
2019-06-07 00:00:00
Commvault 11 < 11 SP7 Multiple Vulnerabilities
2019-07-25 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.035 Low

EPSS

Percentile

91.5%

JSON
Related for VU:214283
cve2prion2nvd2zdt1cvelist2nessus2