Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.CISCO-SA-20180823-APACHE-STRUTS-CUPS.NASL
HistorySep 05, 2018 - 12:00 a.m.

Cisco Unified Communications Manager IM & Presence Service Apache Struts RCE (CSCvm14049)

2018-09-0500:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
113
JSON

According to its self-reported version, the Cisco Unified Communications Manager IM & Presence Service is affected by a Remote Code Execution vulnerability. Please see the included Cisco BIDs and the Cisco Security Advisory for more information.

#TRUSTED 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
#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(112288);
  script_version("1.14");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/11/30");

  script_cve_id("CVE-2018-11776");
  script_bugtraq_id(105125);
  script_xref(name:"CISCO-BUG-ID", value:"CSCvm14049");
  script_xref(name:"CISCO-SA", value:"cisco-sa-20180823-apache-struts");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/05/03");

  script_name(english:"Cisco Unified Communications Manager IM & Presence Service Apache Struts RCE (CSCvm14049)");
  script_summary(english:"Checks the Cisco Unified Communications Manager version.");

  script_set_attribute(attribute:"synopsis", value:
"The remote device is missing a vendor-supplied security patch.");
  script_set_attribute(attribute:"description", value:
"According to its self-reported version, the Cisco Unified
Communications Manager IM & Presence Service is affected by a Remote
Code Execution vulnerability. Please see the included Cisco BIDs and
the Cisco Security Advisory for more information.");
  # https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?56a0e547");
  script_set_attribute(attribute:"see_also", value:"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14049");
  script_set_attribute(attribute:"solution", value:
"Upgrade to the relevant fixed version referenced in Cisco bug ID
CSCvm14049.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-11776");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"d2_elliot_name", value:"Apache Struts 2 Multiple Tags Result Namespace Handling RCE");
  script_set_attribute(attribute:"exploit_framework_d2_elliot", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Apache Struts 2 Namespace Redirect OGNL Injection');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/08/23");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/08/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/09/05");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:unified_communications_manager_im_and_presence_service");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:unified_communications_manager");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:cisco:unified_presence_server");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CISCO");

  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/UCOS/Cisco Unified Presence/version");

  exit(0);
}

include("audit.inc");
include("cisco_workarounds.inc");
include("ccf.inc");

product_info = cisco::get_product_info(name:"Cisco Unified Presence");

version_list = make_list('11.0.1', '11.5.1', '12.0.1');

workarounds = make_list(CISCO_WORKAROUNDS['no_workaround']);
workaround_params = make_list();

reporting = make_array(
  'port'     , 0,
  'severity' , SECURITY_HOLE,
  'version'  , product_info['version'],
  'bug_id'   , "CSCvm14049");

cisco::check_and_report(product_info:product_info, workarounds:workarounds, workaround_params:workaround_params, reporting:reporting, vuln_versions:version_list);
VendorProductVersionCPE
ciscounified_communications_manager_im_and_presence_servicecpe:/a:cisco:unified_communications_manager_im_and_presence_service
ciscounified_communications_managercpe:/a:cisco:unified_communications_manager
ciscounified_presence_servercpe:/a:cisco:unified_presence_server

Related

akamaiblog 1
ibm 8
prion 1
threatpost 20
veracode 1
nessus 6
zdt 4
openvas 3
dsquare 1
packetstorm 3
exploitpack 1
redhatcve 1
qualysblog 3
talosblog 1
osv 2
metasploit 1
kitploit 5
cisco 1
nuclei 1
myhack58 3
checkpoint_advisories 1
f5 1
github 2
ubuntucve 1
attackerkb 3
trendmicroblog 1
krebs 1
impervablog 2
cve 1
cisa_kev 1
exploitdb 2
githubexploit 3
thn 3
rapid7blog 1
fireeye 1
oracle 3
akamaiblog
akamaiblog
Web Application and API Protection -- From SQL Injection to Magecart
2020-09-09 13:00:00
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by a Publicly disclosed Apache Struts vulnerability
2018-09-28 04:30:01
Security Bulletin: Content Collector for Email, File Systems, Microsoft SharePoint and IBM Connections are affected by a publicly disclosed vulnerability found by vFinder: Eclipse Jetty
2018-11-12 12:55:02
Security Bulletin: Public disclosed vulnerability from Apache Struts affects IBM Platform Application Center
2018-09-25 13:15:02
prion
prion
Remote code execution
2018-08-22 13:29:00
threatpost
threatpost
On xDedic, a Flash Zero Day, Facial Recognition, and More
2016-06-17 11:15:12
Amazon Web Services Combing Third Parties for Credentials
2014-04-02 15:01:53
DYN Confirms DDoS Attack Knocking Out Twitter, Spotify Other Major Sites
2016-10-21 10:01:14
veracode
veracode
Remote Code Execution (RCE)
2018-08-22 17:36:38
nessus
nessus
Apache Struts CVE-2018-11776 Results With No Namespace Possible Remote Code Execution (S2-057)
2018-08-22 00:00:00
Apache Struts CVE-2018-11776 Results With No Namespace Remote Code Execution (S2-057) (remote)
2018-08-23 00:00:00
Cisco Unified Communication Manager Apache Struts RCE (CSCvm14042)
2018-09-05 00:00:00
zdt
zdt
Apache Struts 2.x Remote Code Execution Vulnerability
2018-08-24 00:00:00
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (2) Exploit
2018-08-28 00:00:00
Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (1) Exploit
2018-08-28 00:00:00
openvas
openvas
Apache Struts Security Update (S2-057) - Version Check
2018-08-23 00:00:00
Huawei Data Communication: Apache Struts2 S2-057 Remote Code Execution Vulnerability in Some Huawei Products (huawei-sa-20181121-01-struts2)
2020-06-05 00:00:00
Apache Struts Security Update (S2-057) - Active Check
2018-08-27 00:00:00
dsquare
dsquare
Apache Struts 2 Multiple Tags Result Namespace Handling RCE
2018-10-20 00:00:00
packetstorm
packetstorm
Apache Struts 2.3 / 2.5 Remote Code Execution
2018-08-26 00:00:00
Apache Struts 2 Namespace Redirect OGNL Injection
2018-09-07 00:00:00
Apache Struts 2.3 / 2.5 Remote Code Execution
2018-08-25 00:00:00
exploitpack
exploitpack
Apache Struts 2.3 2.3.34 2.5 2.5.16 - Remote Code Execution (1)
2018-08-26 00:00:00
redhatcve
redhatcve
CVE-2018-11776
2018-08-22 08:49:33
qualysblog
qualysblog
Security News: Hackers Aim Ransomware at Big Cos., as Experts Call for Swift Patching of Struts Bug
2018-08-27 18:32:33
Detecting Apache Struts 2 Namespace RCE: CVE-2018-11776
2018-08-23 20:27:19
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
talosblog
talosblog
Connecting the dots between recently active cryptominers
2018-12-18 08:33:00
osv
osv
Apache Struts vulnerable to remote command execution (RCE) due to improper input validation
2018-10-18 19:24:38
CVE-2018-11776
2018-08-22 13:29:00
metasploit
metasploit
Apache Struts 2 Namespace Redirect OGNL Injection
2018-08-31 18:48:22
kitploit
kitploit
Mitaka - A Browser Extension For OSINT Search
2019-09-21 12:00:00
Apache Struts v3 - Tool To Exploit 3 RCE Vulnerabilities On ApacheStruts
2018-08-26 21:14:00
Sn1per v7.0 - Automated Pentest Framework For Offensive Security Experts
2019-05-12 13:09:00
cisco
cisco
Apache Struts Remote Code Execution Vulnerability Affecting Cisco Products: August 2018
2018-08-23 20:00:00
nuclei
nuclei
Apache Struts2 S2-057 - Remote Code Execution
2021-02-24 04:29:30
myhack58
myhack58
Apache Struts2 S2-057 vulnerability analysis and early warning-vulnerability warning-the black bar safety net
2018-08-23 00:00:00
Apache Struts OGNL injection vulnerability principle with an example-vulnerability warning-the black bar safety net
2019-03-30 00:00:00
S2-057 vulnerability in the original author's README: how to use automated tools find 5 RCE-vulnerability warning-the black bar safety net
2018-08-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache Struts Remote Code Execution (CVE-2018-11776)
2018-08-23 00:00:00
f5
f5
K60499474 : Apache Struts vulnerability CVE-2018-11776
2018-08-24 00:00:00
github
github
Apache Struts vulnerable to remote command execution (RCE) due to improper input validation
2018-10-18 19:24:38
Bypassing OGNL sandboxes for fun and charities
2023-01-27 16:00:49
ubuntucve
ubuntucve
CVE-2018-11776
2018-08-22 00:00:00
attackerkb
attackerkb
CVE-2018-11776
2018-08-22 00:00:00
CVE-2019-0230
2020-09-14 00:00:00
CVE-2022-26134
2022-07-13 00:00:00
trendmicroblog
trendmicroblog
Server Security for the Modern IT Ecosystem
2019-01-03 15:30:46
krebs
krebs
Experts Urge Rapid Patching of ‘Struts’ Bug
2018-08-23 20:22:35
impervablog
impervablog
Read: Apache Struts Patches ‘Critical Vulnerability’ CVE-2018-11776
2018-08-23 14:25:36
The World’s Most Popular Coding Language Happens to be Most Hackers’ Weapon of Choice
2018-09-26 16:18:36
cve
cve
CVE-2018-11776
2018-08-22 13:29:00
cisa_kev
cisa_kev
Apache Struts Remote Code Execution Vulnerability
2021-11-03 00:00:00
exploitdb
exploitdb
Apache Struts 2 - Namespace Redirect OGNL Injection (Metasploit)
2018-09-10 00:00:00
Apache Struts 2.3 &lt; 2.3.34 / 2.5 &lt; 2.5.16 - Remote Code Execution (1)
2018-08-26 00:00:00
githubexploit
githubexploit
Exploit for Injection in Atlassian Confluence
2021-10-06 23:24:24
Exploit for Injection in Atlassian Confluence
2021-10-06 23:24:24
Exploit for Injection in Atlassian Confluence
2021-10-06 23:24:24
thn
thn
Cisco Issues Security Patch Updates for 32 Flaws in its Products
2018-09-06 08:45:00
New Apache Struts RCE Flaw Lets Hackers Take Over Web Servers
2018-08-22 14:04:00
Top 15 Vulnerabilities Attackers Exploited Millions of Times to Hack Linux Systems
2021-08-23 13:27:00
rapid7blog
rapid7blog
Active Exploitation of Confluence CVE-2022-26134
2022-06-02 23:27:15
fireeye
fireeye
Think Fast: Time Between Disclosure, Patch Release and Vulnerability Exploitation — Intelligence for Vulnerability Management, Part Two
2020-04-13 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2019
2019-01-15 00:00:00
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00
Oracle Critical Patch Update Advisory - July 2020
2020-07-14 00:00:00
JSON
Related for CISCO-SA-20180823-APACHE-STRUTS-CUPS.NASL
akamaiblog1ibm8prion1threatpost20veracode1nessus6zdt4openvas3dsquare1packetstorm3exploitpack1redhatcve1qualysblog3talosblog1osv2metasploit1kitploit5cisco1nuclei1myhack583checkpoint_advisories1f51github2ubuntucve1attackerkb3trendmicroblog1krebs1impervablog2cve1cisa_kev1exploitdb2githubexploit3thn3rapid7blog1fireeye1oracle3