Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS_RHSA-2020-1080.NASL
HistoryApr 10, 2020 - 12:00 a.m.

CentOS 7 : atk / evolution / evolution-data-server / evolution-ews (CESA-2020:1080)

2020-04-1000:00:00
This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
43

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

EPSS

0.003

Percentile

70.0%

JSON

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1080 advisory.

  • evolution: specially crafted email leading to OpenPGP signatures being spoofed for arbitrary messages (CVE-2018-15587)

  • evolution-ews: all certificate errors ignored if error is ignored during initial account setup in gnome-online- accounts (CVE-2019-3890)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2020:1080 and 
# CentOS Errata and Security Advisory 2020:1080 respectively.
#

include("compat.inc");

if (description)
{
  script_id(135332);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/05");

  script_cve_id("CVE-2018-15587", "CVE-2019-3890");
  script_xref(name:"RHSA", value:"2020:1080");

  script_name(english:"CentOS 7 : atk / evolution / evolution-data-server / evolution-ews (CESA-2020:1080)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote CentOS host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description",
    value:
"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as
referenced in the RHSA-2020:1080 advisory.

  - evolution: specially crafted email leading to OpenPGP
    signatures being spoofed for arbitrary messages
    (CVE-2018-15587)

  - evolution-ews: all certificate errors ignored if error
    is ignored during initial account setup in gnome-online-
    accounts (CVE-2019-3890)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number."
  );
  # https://lists.centos.org/pipermail/centos-cr-announce/2020-April/012408.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?6f4e4fb9"
  );
  # https://lists.centos.org/pipermail/centos-cr-announce/2020-April/012441.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?ef2763a6"
  );
  # https://lists.centos.org/pipermail/centos-cr-announce/2020-April/012442.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?5f8c0771"
  );
  # https://lists.centos.org/pipermail/centos-cr-announce/2020-April/012443.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?66ffcead"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-3890");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:atk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:atk-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-bogofilter");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-data-server");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-data-server-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-data-server-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-data-server-langpacks");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-data-server-perl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-data-server-tests");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-devel-docs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-ews");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-ews-langpacks");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-help");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-langpacks");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-pst");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:evolution-spamassassin");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:7");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/02/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2020/04/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/04/10");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"CentOS Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 7.x", "CentOS " + os_ver);

if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);


flag = 0;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"atk-2.28.1-2.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"atk-devel-2.28.1-2.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-3.28.5-8.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-bogofilter-3.28.5-8.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-data-server-3.28.5-4.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-data-server-devel-3.28.5-4.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-data-server-doc-3.28.5-4.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-data-server-langpacks-3.28.5-4.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-data-server-perl-3.28.5-4.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-data-server-tests-3.28.5-4.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-devel-3.28.5-8.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-devel-docs-3.28.5-8.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-ews-3.28.5-5.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-ews-langpacks-3.28.5-5.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-help-3.28.5-8.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-langpacks-3.28.5-8.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-pst-3.28.5-8.el7")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"evolution-spamassassin-3.28.5-8.el7")) flag++;


if (flag)
{
  cr_plugin_caveat = '\n' +
    'NOTE: The security advisory associated with this vulnerability has a\n' +
    'fixed package version that may only be available in the continuous\n' +
    'release (CR) repository for CentOS, until it is present in the next\n' +
    'point release of CentOS.\n\n' +

    'If an equal or higher package level does not exist in the baseline\n' +
    'repository for your major version of CentOS, then updates from the CR\n' +
    'repository will need to be applied in order to address the\n' +
    'vulnerability.\n';
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get() + cr_plugin_caveat
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "atk / atk-devel / evolution / evolution-bogofilter / etc");
}
VendorProductVersionCPE
centoscentosatkp-cpe:/a:centos:centos:atk
centoscentosatk-develp-cpe:/a:centos:centos:atk-devel
centoscentosevolutionp-cpe:/a:centos:centos:evolution
centoscentosevolution-bogofilterp-cpe:/a:centos:centos:evolution-bogofilter
centoscentosevolution-data-serverp-cpe:/a:centos:centos:evolution-data-server
centoscentosevolution-data-server-develp-cpe:/a:centos:centos:evolution-data-server-devel
centoscentosevolution-data-server-docp-cpe:/a:centos:centos:evolution-data-server-doc
centoscentosevolution-data-server-langpacksp-cpe:/a:centos:centos:evolution-data-server-langpacks
centoscentosevolution-data-server-perlp-cpe:/a:centos:centos:evolution-data-server-perl
centoscentosevolution-data-server-testsp-cpe:/a:centos:centos:evolution-data-server-tests
Rows per page:
1-10 of 191

Related

nessus 37
centos 1
redhat 3
oraclelinux 3
openvas 12
fedora 3
cvelist 2
nvd 2
archlinux 1
cve 2
debian 3
osv 4
almalinux 1
suse 3
ubuntu 1
amazon 2
prion 2
ubuntucve 2
veracode 2
redhatcve 2
debiancve 2
thn 1
nessus
nessus
Oracle Linux 7 : evolution (ELSA-2020-1080)
2023-09-07 00:00:00
NewStart CGSL CORE 5.05 / MAIN 5.05 : atk Multiple Vulnerabilities (NS-SA-2023-0013)
2023-04-11 00:00:00
RHEL 7 : evolution (RHSA-2020:1080)
2020-04-01 00:00:00
centos
centos
atk, evolution security update
2020-04-08 17:42:28
redhat
redhat
(RHSA-2020:1080) Moderate: evolution security and bug fix update
2020-03-31 09:16:03
(RHSA-2020:1600) Moderate: evolution security and bug fix update
2020-04-28 08:55:27
(RHSA-2019:3699) Moderate: evolution security and bug fix update
2019-11-05 20:52:06
oraclelinux
oraclelinux
evolution security and bug fix update
2020-04-06 00:00:00
evolution security and bug fix update
2020-05-05 00:00:00
evolution security and bug fix update
2019-11-14 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for evolution (EulerOS-SA-2021-1292)
2021-02-22 00:00:00
openSUSE: Security Advisory for evolution (openSUSE-SU-2019:1431-1)
2020-01-09 00:00:00
openSUSE: Security Advisory for evolution (openSUSE-SU-2019:1453-1)
2019-05-28 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: evolution-3.28.5-3.fc28
2019-03-08 21:40:21
[SECURITY] Fedora 29 Update: evolution-data-server-3.30.5-2.fc29
2019-04-06 19:44:49
[SECURITY] Fedora 29 Update: evolution-ews-3.30.5-2.fc29
2019-04-06 19:44:49
cvelist
cvelist
CVE-2018-15587
2019-02-11 17:00:00
CVE-2019-3890
2019-08-01 13:22:55
nvd
nvd
CVE-2018-15587
2019-02-11 17:29:00
CVE-2019-3890
2019-08-01 14:15:13
archlinux
archlinux
[ASA-201904-1] evolution: content spoofing
2019-04-02 00:00:00
cve
cve
CVE-2018-15587
2019-02-11 17:29:00
CVE-2019-3890
2019-08-01 14:15:13
debian
debian
[SECURITY] [DSA 4457-1] evolution security update
2019-06-07 05:24:03
[SECURITY] [DLA 1766-1] evolution security update
2019-04-26 21:10:49
[SECURITY] [DSA 4457-1] evolution security update
2019-06-07 05:24:03
osv
osv
evolution - security update
2019-04-26 00:00:00
evolution - security update
2019-06-07 00:00:00
CVE-2018-15587
2019-02-11 17:29:00
almalinux
almalinux
Moderate: evolution security and bug fix update
2020-04-28 08:55:27
suse
suse
Security update for evolution (moderate)
2019-05-27 00:00:00
Security update for evolution (moderate)
2019-06-07 00:00:00
Security update for evolution (moderate)
2019-05-22 00:00:00
ubuntu
ubuntu
Evolution Data Server vulnerability
2019-05-30 00:00:00
amazon
amazon
Medium: evolution
2020-08-18 19:48:00
Medium: evolution-data-server, evolution-ews
2020-08-18 19:31:00
prion
prion
Information disclosure
2019-08-01 14:15:00
Design/Logic Flaw
2019-02-11 17:29:00
ubuntucve
ubuntucve
CVE-2018-15587
2019-02-11 00:00:00
CVE-2019-3890
2019-08-01 00:00:00
veracode
veracode
Signature Spoofing
2020-04-01 00:38:31
Authorization Bypass
2019-11-06 00:21:11
redhatcve
redhatcve
CVE-2018-15587
2019-02-15 13:49:28
CVE-2019-3890
2020-04-02 13:53:41
debiancve
debiancve
CVE-2018-15587
2019-02-11 17:29:00
CVE-2019-3890
2019-08-01 14:15:13
thn
thn
Over Dozen Popular Email Clients Found Vulnerable to Signature Spoofing Attacks
2019-04-30 16:59:00

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

EPSS

0.003

Percentile

70.0%

JSON
Related for CENTOS_RHSA-2020-1080.NASL
nessus37centos1redhat3oraclelinux3openvas12fedora3cvelist2nvd2archlinux1cve2debian3osv4almalinux1suse3ubuntu1amazon2prion2ubuntucve2veracode2redhatcve2debiancve2thn1