Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_ENTERPRISE_MANAGER_JUL_2019_CPU.NASL
HistoryJul 17, 2019 - 12:00 a.m.

Oracle Enterprise Manager Cloud Control (Jul 2019 CPU)

2019-07-1700:00:00
This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.01 Low

EPSS

Percentile

83.9%

JSON

The version of Oracle Enterprise Manager Cloud Control installed on the remote host is affected by multiple vulnerabilities in Enterprise Manager Base Platform component:

  • An unspecified vulnerability in the Enterprise Manager Base Platform component of Oracle Enterprise Manager Products Suite (subcomponent: Connector Framework (Apache CXF)), which could allow an unauthenticated, remote attacker to compromise Enterprise Manager Base Platform. (CVE-2018-8039)

  • An unspecified vulnerability in the Oracle Enterprise Manager Base Platform component of Oracle Enterprise Manager Products Suite (subcomponent: Valid Session (Apache ActiveMQ)), which could allow an unauthenticated, remote attacker to compromise Oracle Enterprise Manager Base Platform. (CVE-2019-0222)

  • An unspecified vulnerability in the Enterprise Manager Base Platform component of Oracle Enterprise Manager Products Suite (subcomponent: Discovery Framework (OpenSSL)), which could allow and unauthenticated, remote attacker to compromise Enterprise Manager Base Platform. (CVE-2019-1559)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(126775);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/12/06");

  script_cve_id(
    "CVE-2018-1258",
    "CVE-2018-8039",
    "CVE-2018-11775",
    "CVE-2019-0222",
    "CVE-2019-1559"
  );
  script_bugtraq_id(
    104222,
    105335,
    106357,
    107174,
    107622
  );
  script_xref(name:"IAVA", value:"2019-A-0251");
  script_xref(name:"CEA-ID", value:"CEA-2021-0004");

  script_name(english:"Oracle Enterprise Manager Cloud Control (Jul 2019 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"An enterprise management application installed on the remote host is
affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Oracle Enterprise Manager Cloud Control installed on
the remote host is affected by multiple vulnerabilities in
Enterprise Manager Base Platform component:

  - An unspecified vulnerability in the Enterprise Manager Base Platform component of
  Oracle Enterprise Manager Products Suite (subcomponent: Connector Framework (Apache CXF)),
  which could allow an unauthenticated, remote attacker to compromise
  Enterprise Manager Base Platform. (CVE-2018-8039)

  - An unspecified vulnerability in the Oracle Enterprise Manager Base Platform component
  of Oracle Enterprise Manager Products Suite (subcomponent: Valid Session (Apache ActiveMQ)),
  which could allow an unauthenticated, remote attacker to compromise
  Oracle Enterprise Manager Base Platform. (CVE-2019-0222)

  - An unspecified vulnerability in the Enterprise Manager Base Platform component of
  Oracle Enterprise Manager Products Suite (subcomponent: Discovery Framework (OpenSSL)), which
  could allow and unauthenticated, remote attacker to compromise
  Enterprise Manager Base Platform. (CVE-2019-1559)");
  # https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?9aa2b901");
  # https://support.oracle.com/rs?type=doc&id=2534806.1
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?88632d22");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the July 2019
Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-8039");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2018-1258");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/07/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/07/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/07/17");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:enterprise_manager");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_enterprise_manager_installed.nbin");
  script_require_keys("installed_sw/Oracle Enterprise Manager Cloud Control");

  exit(0);
}

include('global_settings.inc');
include('misc_func.inc');
include('oracle_rdbms_cpu_func.inc');
include('install_func.inc');

product = 'Oracle Enterprise Manager Cloud Control';
install = get_single_install(app_name:product, exit_if_unknown_ver:TRUE);
version = install['version'];
emchome = install['path'];

patchid = NULL;
missing = NULL;
patched = FALSE;
fix = NULL;

if (version =~ '^13\\.3\\.0\\.0(\\.[0-9]+)?$')
{
  patchid = '29835547';
  fix = '13.3.0.0.190716';
}
else if (version =~ '^13\\.2\\.0\\.0(\\.[0-9]+)?$')
{
  patchid = '29835501';
  fix = '13.2.0.0.190716';
}
else if (version =~ '^12\\.1\\.0\\.5(\\.[0-9]+)?$')
{
  patchid = '29835388';
  fix = '12.1.0.5.190716';
}

if (isnull(patchid))
  audit(AUDIT_HOST_NOT, 'affected');

# compare version to check if we've already adjusted for patch level during detection
if (ver_compare(ver:version, fix:fix, strict:FALSE) >= 0)
  audit(AUDIT_INST_PATH_NOT_VULN, product, version, emchome);

# Now look for the affected components
patchesinstalled = find_patches_in_ohomes(ohomes:make_list(emchome));
if (isnull(patchesinstalled))
  missing = patchid;
else
{
  foreach applied (keys(patchesinstalled[emchome]))
  {
    if (applied == patchid)
    {
      patched = TRUE;
      break;
    }
    else
    {
      foreach bugid (patchesinstalled[emchome][applied]['bugs'])
      {
        if (bugid == patchid)
        {
          patched = TRUE;
          break;
        }
      }
      if (patched) break;
    }
  }
  if (!patched)
    missing = patchid;
}

if (empty_or_null(missing))
  audit(AUDIT_HOST_NOT, 'affected');

order = make_list('Product', 'Version', 'Missing patch');
report = make_array(
  order[0], product,
  order[1], version,
  order[2], patchid
);
report = report_items_str(report_items:report, ordered_fields:order);

security_report_v4(port:0, extra:report, severity:SECURITY_WARNING);
VendorProductVersionCPE
oracleenterprise_managercpe:/a:oracle:enterprise_manager

Related

openvas 29
osv 12
debian 4
nessus 37
cve 5
ibm 52
veracode 5
prion 5
cvelist 5
redhatcve 5
symantec 3
github 4
nvd 5
ubuntucve 3
debiancve 3
f5 2
centos 1
suse 4
archlinux 2
alpinelinux 1
freebsd 1
cloudfoundry 1
ubuntu 2
paloalto 1
redhat 1
slackware 1
openssl 1
mageia 1
qualysblog 1
altlinux 1
aix 1
openvas
openvas
Debian: Security Advisory (DLA-2583-1)
2021-03-06 00:00:00
Apache Active MQ 5.0.0 - 5.15.5 Missing TLS Hostname Verification Vulnerability - Linux
2018-09-20 00:00:00
Apache Active MQ 5.0.0 - 5.15.5 Missing TLS Hostname Verification Vulnerability - Windows
2018-09-20 00:00:00
osv
osv
activemq - security update
2021-03-05 00:00:00
Apache CXF TLS hostname verification does not work correctly with com.sun.net.ssl.*
2018-10-19 16:40:01
CVE-2018-8039
2018-07-02 13:29:00
debian
debian
[SECURITY] [DLA 2583-1] activemq security update
2021-03-05 17:05:48
[SECURITY] [DSA 4400-1] openssl1.0 security update
2019-02-28 22:13:35
[SECURITY] [DLA 2582-1] mqtt-client security update
2021-03-05 16:49:04
nessus
nessus
Debian DLA-2583-1 : activemq security update
2021-03-08 00:00:00
IBM WebSphere Application Server 9.0.x < 9.0.0.9 MITM (CVE-2018-8039)
2020-10-27 00:00:00
Apache ActiveMQ Client 5.x < 5.15.6 TLS Hostname Verification Weakness
2018-09-14 00:00:00
cve
cve
CVE-2018-8039
2018-07-02 13:29:00
CVE-2018-11775
2018-09-10 20:29:00
CVE-2018-1258
2018-05-11 20:29:00
ibm
ibm
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Case Manager (CVE-2018-8039)
2018-09-28 16:35:01
Security Bulletin: Potential MITM attack in Apache CXF used by WebSphere Application Server bundled with IBM WebSphere Application Server Patterns (CVE-2018-8039)
2018-09-24 16:55:01
Security Bulletin: Potential MITM attack in Apache CXF used by WebSphere Application Server (CVE-2018-8039)
2018-09-20 23:20:01
veracode
veracode
Hostname Verification Bypass
2018-06-29 05:13:30
Man-in-the-Middle (MitM)
2018-09-11 06:20:10
Unauthorised Access Through Method Security
2018-05-10 07:20:11
prion
prion
Design/Logic Flaw
2018-07-02 13:29:00
Default credentials
2018-09-10 20:29:00
Authorization
2018-05-11 20:29:00
cvelist
cvelist
CVE-2018-8039
2018-06-28 00:00:00
CVE-2018-11775
2018-09-10 00:00:00
CVE-2018-1258
2018-05-09 00:00:00
redhatcve
redhatcve
CVE-2018-8039
2020-03-28 13:54:32
CVE-2018-11775
2018-09-14 20:18:54
CVE-2018-1258
2018-05-15 22:48:52
symantec
symantec
Apache CXF CVE-2018-8039 TLS Hostname Verification Security Bypass Vulnerability
2018-06-29 00:00:00
Spring Security and Spring Framework CVE-2018-1258 Authorization Bypass Vulnerability
2018-05-09 00:00:00
OpenSSL CVE-2019-1559 Information Disclosure Vulnerability
2019-02-26 00:00:00
github
github
Apache CXF TLS hostname verification does not work correctly with com.sun.net.ssl.*
2018-10-19 16:40:01
Improper Certificate Validation in Apache activemq-client
2018-10-19 16:42:27
Spring Framework when used in combination with any versions of Spring Security contains an authorization bypass
2018-10-17 20:05:49
nvd
nvd
CVE-2018-8039
2018-07-02 13:29:00
CVE-2018-11775
2018-09-10 20:29:00
CVE-2018-1258
2018-05-11 20:29:00
ubuntucve
ubuntucve
CVE-2018-11775
2018-09-10 00:00:00
CVE-2018-1258
2018-05-11 00:00:00
CVE-2019-1559
2019-02-26 00:00:00
debiancve
debiancve
CVE-2018-11775
2018-09-10 20:29:00
CVE-2019-0222
2019-03-28 22:29:00
CVE-2019-1559
2019-02-27 23:29:00
f5
f5
K18193959 : Spring Framework vulnerability CVE-2018-1258
2018-05-29 00:00:00
K18549143 : OpenSSL vulnerability CVE-2019-1559
2019-03-19 00:00:00
centos
centos
openssl security update
2019-08-16 21:53:45
suse
suse
Security update for openssl-1_0_0 (moderate)
2019-05-22 00:00:00
Security update for openssl (moderate)
2019-04-08 00:00:00
Security update for openssl-1_0_0 (moderate)
2019-04-02 00:00:00
archlinux
archlinux
[ASA-201903-6] lib32-openssl-1.0: information disclosure
2019-03-03 00:00:00
[ASA-201903-2] openssl-1.0: information disclosure
2019-03-02 00:00:00
alpinelinux
alpinelinux
CVE-2019-1559
2019-02-27 23:29:00
freebsd
freebsd
OpenSSL -- Padding oracle vulnerability
2019-02-19 00:00:00
cloudfoundry
cloudfoundry
USN-3899-1: OpenSSL vulnerability | Cloud Foundry
2019-03-21 00:00:00
ubuntu
ubuntu
OpenSSL vulnerability
2019-02-27 00:00:00
mqtt-client vulnerability
2024-03-07 00:00:00
paloalto
paloalto
OpenSSL vulnerability CVE-2019-1559 has been resolved in PAN-OS
2019-12-04 17:00:00
redhat
redhat
(RHSA-2019:2471) Moderate: openssl security update
2019-08-13 14:07:51
slackware
slackware
[slackware-security] openssl (slackware 14.2)
2019-02-27 04:12:59
openssl
openssl
Vulnerability in OpenSSL CVE-2019-1559
2019-02-26 00:00:00
mageia
mageia
Updated openssl packages fix security vulnerability
2019-03-07 19:34:45
qualysblog
qualysblog
Zombie POODLE and GOLDENDOODLE Vulnerabilities
2019-04-22 08:40:40
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl10 version 1.0.2r-alt1
2019-03-20 00:00:00
aix
aix
There is a vulnerability in OpenSSL used by AIX.
2019-04-16 10:48:55

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.01 Low

EPSS

Percentile

83.9%

JSON
Related for ORACLE_ENTERPRISE_MANAGER_JUL_2019_CPU.NASL
openvas29osv12debian4nessus37cve5ibm52veracode5prion5cvelist5redhatcve5symantec3github4nvd5ubuntucve3debiancve3f52centos1suse4archlinux2alpinelinux1freebsd1cloudfoundry1ubuntu2paloalto1redhat1slackware1openssl1mageia1qualysblog1altlinux1aix1