Lucene search

[email protected]CVE-2019-18631

HistoryNov 05, 2019 - 4:15 p.m.

CVE-2019-18631

2019-11-0516:15:10

CWE-502

[email protected]

web.nvd.nist.gov

centrify

authentication

privilege elevation

remote code execution

vulnerability

cve-2019-18631

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

32.5%

JSON

The Windows component of Centrify Authentication and Privilege Elevation Services 3.4.0, 3.4.1, 3.4.2, 3.4.3, 3.5.0, 3.5.1 (18.8), 3.5.2 (18.11), and 3.6.0 (19.6) does not properly handle an unspecified exception during use of partially trusted assemblies to serialize input data, which allows attackers to execute arbitrary code inside the Centrify process via (1) a crafted application that makes a pipe connection to the process and sends malicious serialized data or (2) a crafted Microsoft Management Console snap-in control file.

Affected configurations

NVD

Node

centrifyauthentication_serviceMatch3.4.0windows

centrifyauthentication_serviceMatch3.4.1windows

centrifyauthentication_serviceMatch3.4.2windows

centrifyauthentication_serviceMatch3.4.3windows

centrifyauthentication_serviceMatch3.5.0windows

centrifyauthentication_serviceMatch3.5.1windows

AND

centrifyinfrastructure_servicesMatch18.8

Node

centrifyauthentication_serviceMatch3.5.2windows

AND

centrifyinfrastructure_servicesMatch18.11

Node

centrifyauthentication_serviceMatch3.6.0windows

AND

centrifyinfrastructure_servicesMatch19.6

Node

centrifyprivilege_elevation_serviceMatch3.4.0windows

centrifyprivilege_elevation_serviceMatch3.4.1windows

centrifyprivilege_elevation_serviceMatch3.4.2windows

centrifyprivilege_elevation_serviceMatch3.4.3windows

centrifyprivilege_elevation_serviceMatch3.5.0windows

centrifyprivilege_elevation_serviceMatch3.5.1windows

AND

centrifyinfrastructure_servicesMatch18.8

Node

centrifyprivilege_elevation_serviceMatch3.5.2windows

AND

centrifyinfrastructure_servicesMatch18.11

Node

centrifyprivilege_elevation_serviceMatch3.6.0windows

AND

centrifyinfrastructure_servicesMatch19.6

CPENameOperatorVersion
centrify:authentication_servicecentrify authentication serviceeq3.4.0
centrify:authentication_servicecentrify authentication serviceeq3.4.1
centrify:authentication_servicecentrify authentication serviceeq3.4.2
centrify:authentication_servicecentrify authentication serviceeq3.4.3
centrify:authentication_servicecentrify authentication serviceeq3.5.0
centrify:authentication_servicecentrify authentication serviceeq3.5.1

CPE	Name	Operator	Version
centrify:authentication_service	centrify authentication service	eq	3.4.0
centrify:authentication_service	centrify authentication service	eq	3.4.1
centrify:authentication_service	centrify authentication service	eq	3.4.2
centrify:authentication_service	centrify authentication service	eq	3.4.3
centrify:authentication_service	centrify authentication service	eq	3.5.0
centrify:authentication_service	centrify authentication service	eq	3.5.1

References

centrify.force.com/support/Article/KB-22420-Centrify-Agent-for-Windows-Remote-Code-Execution-Vulnerability

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

32.5%

JSON

Related for CVE-2019-18631

cvelist1 nvd1 prion1