Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.CISCO_TELEPRESENCE_SUPERVISOR_8050_MSE_CSCUP22635.NASL
HistoryJun 18, 2014 - 12:00 a.m.

Cisco TelePresence Supervisor MSE 8050 Multiple Vulnerabilities in OpenSSL

2014-06-1800:00:00
This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
158

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

0.974 High

EPSS

Percentile

99.9%

JSON

The remote Cisco TelePresence device is running a software version known to be affected by multiple OpenSSL related vulnerabilities :

  • An unspecified error exists that could allow an attacker to cause usage of weak keying material leading to simplified man-in-the-middle attacks.
    (CVE-2014-0224)

  • An unspecified error exists related to anonymous ECDH ciphersuites that could allow denial of service attacks. Note this issue only affects OpenSSL TLS clients. (CVE-2014-3470)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(76132);
  script_version("1.7");
  script_cvs_date("Date: 2019/11/26");

  script_cve_id("CVE-2014-0224", "CVE-2014-3470");
  script_bugtraq_id(67898, 67899);
  script_xref(name:"CERT", value:"978508");

  script_name(english:"Cisco TelePresence Supervisor MSE 8050 Multiple Vulnerabilities in OpenSSL");
  script_summary(english:"Checks TelePresence Supervisor version.");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The remote Cisco TelePresence device is running a software version
known to be affected by multiple OpenSSL related vulnerabilities :

  - An unspecified error exists that could allow an
    attacker to cause usage of weak keying material
    leading to simplified man-in-the-middle attacks.
    (CVE-2014-0224)

  - An unspecified error exists related to anonymous ECDH
    ciphersuites that could allow denial of service
    attacks. Note this issue only affects OpenSSL TLS
    clients. (CVE-2014-3470)");
  # http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?5539aa9d");
  script_set_attribute(attribute:"see_also", value:"https://www.openssl.org/news/secadv/20140605.txt");
  script_set_attribute(attribute:"solution", value:
"There is currently no known solution.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:U/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-0224");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/06/05");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/06/05");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/18");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/h:cisco:telepresence_supervisor_mse_8050");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CISCO");

  script_copyright(english:"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("cisco_telepresence_supervisor_mse_detect.nbin");
  script_require_keys("cisco/supervisor_mse/8050");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

version = get_kb_item_or_exit("cisco/supervisor_mse/8050");

item = eregmatch(pattern: "^([0-9.]+)(\(([0-9.]+)\))?$", string: version);
if (isnull(item)) exit(1, "Failed to parse version string.");

if (isnull(item[3])) audit(AUDIT_VER_NOT_GRANULAR, "Cisco TelePresence Supervisor MSE 8050", version);

vuln = FALSE;

if (item[1] == "2.1" && item[3] == "1.18")
  vuln = TRUE;

if (item[1] == "2.2" && item[3] == "1.17")
  vuln = TRUE;

if (item[1] == "2.3" && item[3] == "1.31")
  vuln = TRUE;

if (item[1] == "2.3" && item[3] == "1.32")
  vuln = TRUE;

if (vuln) security_warning(0);
else audit(AUDIT_INST_VER_NOT_VULN, "Cisco TelePresence Supervisor MSE 8050 software", version);
VendorProductVersionCPE
ciscotelepresence_supervisor_mse_8050cpe:/h:cisco:telepresence_supervisor_mse_8050

Related

ibm 46
nessus 60
openvas 35
suse 6
ubuntu 4
freebsd_advisory 1
kaspersky 2
mageia 1
freebsd 1
ics 1
debian 4
vmware 1
veracode 2
ubuntucve 2
f5 2
mariadbunix 2
prion 1
cvelist 2
checkpoint_advisories 1
cve 1
openssl 1
nvd 1
debiancve 1
securityvulns 1
osv 2
aix 1
amazon 2
arista 1
nodejsblog 1
centos 2
cert 1
threatpost 3
hp 1
metasploit 1
jvn 1
thn 1
redhat 2
paloalto 1
ibm
ibm
Security Bulletin: IBM Systems Director Storage Control is affected by vulnerabilities in OpenSSL (CVE-2014-0224 and CVE-2014-3470)
2019-01-31 01:25:01
Security Bulletin: Security vulnerabilities have been identified in IBM WebSphere MQ (CVE-2014-0224, CVE-2014-3470), Websphere Message Broker and IBM Integration Bus (CVE-2014-0224) shipped with Predictive Maintenance and Quality
2018-06-15 22:33:16
Security Bulletin: Rational RequisitePro affected by OpenSSL vulnerabilities (CVE-2014-0224, CVE-2014-3470)
2019-10-24 21:46:41
nessus
nessus
Splunk Enterprise 4.3.x / 5.0.x < 5.0.9 / 6.0.x < 6.0.5 / 6.1.x < 6.1.2 Multiple OpenSSL Vulnerabilities
2014-07-16 00:00:00
SuSE 11.3 Security Update : OpenSSL (SAT Patch Number 9326)
2014-06-06 00:00:00
Cisco TelePresence MCU Series Devices Multiple Vulnerabilities in OpenSSL
2014-06-18 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:0759-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0759-2)
2021-06-09 00:00:00
SUSE: Security Advisory for OpenSSL (SUSE-SU-2014:0759-1)
2015-10-13 00:00:00
suse
suse
Security update for OpenSSL (critical)
2014-06-07 01:04:17
Security update for OpenSSL (critical)
2014-06-06 00:04:19
Security update for OpenSSL (critical)
2014-06-06 01:05:59
ubuntu
ubuntu
OpenSSL regression
2014-06-23 00:00:00
OpenSSL regression
2014-06-12 00:00:00
OpenSSL vulnerabilities
2014-06-05 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:14.openssl
2014-06-05 00:00:00
kaspersky
kaspersky
KLA10382 Multiple vulnerabilities in VMware
2014-06-10 00:00:00
KLA10266 OSI vulnerability in MySQL Workbench
2014-06-27 00:00:00
mageia
mageia
Updated openssl packages fix multiple vulnerabilties
2014-06-06 14:31:01
freebsd
freebsd
OpenSSL -- multiple vulnerabilities
2014-06-05 00:00:00
ics
ics
Siemens OpenSSL Vulnerabilities (Update G)
2018-08-29 12:00:00
debian
debian
[SECURITY] [DSA 2950-2] openssl update
2014-06-16 18:21:12
openssl security update
2014-06-05 19:36:19
[SECURITY] [DSA 2950-1] openssl security update
2014-06-05 11:51:34
vmware
vmware
VMware product updates address OpenSSL security vulnerabilities
2014-06-10 00:00:00
veracode
veracode
Denial Of Service (DoS) Through Null Pointer Dereference
2017-02-07 02:02:21
Man-in-the-Middle (MitM)
2019-01-15 08:52:44
ubuntucve
ubuntucve
CVE-2014-3470
2014-06-05 00:00:00
CVE-2014-0224
2014-06-05 00:00:00
f5
f5
SOL15342 - OpenSSL vulnerability CVE-2014-3470
2014-06-16 00:00:00
K15342 : OpenSSL vulnerability CVE-2014-3470
2014-08-13 00:00:00
mariadbunix
mariadbunix
CVE-2014-3470
2014-06-05 21:55:07
CVE-2014-0224
2014-06-05 21:55:07
prion
prion
Null pointer dereference
2014-06-05 21:55:00
cvelist
cvelist
CVE-2014-3470
2014-06-05 21:00:00
CVE-2014-0224
2014-06-05 21:00:00
checkpoint_advisories
checkpoint_advisories
OpenSSL Anonymous ECDH Denial of Service (CVE-2014-3470)
2014-06-10 00:00:00
cve
cve
CVE-2014-3470
2014-06-05 21:55:07
openssl
openssl
Vulnerability in OpenSSL CVE-2014-3470
2014-05-30 00:00:00
nvd
nvd
CVE-2014-3470
2014-06-05 21:55:07
debiancve
debiancve
CVE-2014-3470
2014-06-05 21:55:07
securityvulns
securityvulns
OpenSSL multiple security vulnerabilities
2014-06-06 00:00:00
osv
osv
openssl - security update
2014-06-05 00:00:00
openssl - security update
2014-06-05 00:00:00
aix
aix
AIX OpenSSL Vulnerabilities (Multiple CVEs)
2014-06-11 06:39:27
amazon
amazon
Important: openssl098e
2014-06-05 15:38:00
Important: openssl097a
2014-06-05 15:38:00
arista
arista
Security Advisory 0005
2014-06-09 00:00:00
nodejsblog
nodejsblog
OpenSSL and Breaking UTF-8 Change (fixed in Node v0.8.27 and v0.10.29)
2014-06-16 00:00:00
centos
centos
openssl security update
2014-06-06 01:40:21
openssl097a, openssl098e security update
2014-06-05 13:21:51
cert
cert
OpenSSL is vulnerable to a man-in-the-middle attack
2014-06-05 00:00:00
threatpost
threatpost
SSL Pulse Scans Quantify Vulnerable OpenSSL Servers
2014-06-13 14:05:55
New OpenSSL MITM Flaw Affects All Clients, Some Server Versions
2014-06-05 09:30:06
VMware Patches ESXi Against OpenSSL Flaw, But Many Other Products Still Vulnerable
2014-06-12 09:38:56
hp
hp
HPSBPI03107 rev.3 - Certain HP LaserJet Printers, MFPs and Certain HP OfficeJet Enterprise Printers using OpenSSL, Remote Unauthorized Access
2014-09-18 00:00:00
metasploit
metasploit
OpenSSL Server-Side ChangeCipherSpec Injection Scanner
2014-06-09 22:38:11
jvn
jvn
JVN#61247051: OpenSSL improper handling of Change Cipher Spec message
2014-06-06 00:00:00
thn
thn
Android 4.3 and Earlier versions Vulnerable to Critical Code-Execution Flaw
2014-06-26 21:22:00
redhat
redhat
(RHSA-2014:0631) Important: Red Hat JBoss Enterprise Application Platform 6.2.3 security update
2014-06-05 15:19:06
(RHSA-2014:0632) Important: Red Hat JBoss Web Server 2.0.1 openssl security update
2014-06-05 14:49:28
paloalto
paloalto
OpenSSL Man-in-the-middle vulnerability
2014-06-09 07:00:00

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

0.974 High

EPSS

Percentile

99.9%

JSON
Related for CISCO_TELEPRESENCE_SUPERVISOR_8050_MSE_CSCUP22635.NASL
ibm46nessus60openvas35suse6ubuntu4freebsd_advisory1kaspersky2mageia1freebsd1ics1debian4vmware1veracode2ubuntucve2f52mariadbunix2prion1cvelist2checkpoint_advisories1cve1openssl1nvd1debiancve1securityvulns1osv2aix1amazon2arista1nodejsblog1centos2cert1threatpost3hp1metasploit1jvn1thn1redhat2paloalto1