Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.GLASSFISH_CPU_OCT_2018.NASL
HistoryDec 11, 2018 - 12:00 a.m.

Oracle GlassFish Server 3.1.2.x < 3.1.2.19 (October 2018 CPU)

2018-12-1100:00:00
This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
626

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L

0.002 Low

EPSS

Percentile

64.6%

JSON

According to its self-reported version, the Oracle GlassFish Server running on the remote host is 3.1.2.x prior to 3.1.2.19. Is is, therefore, affected by multiple vulnerabilities:

  • A vulnerability could allow an Attacker with unauthenticated network access to compromise Oracle GlassFish Server. A successful attack would allow the access to critical data including creation, deletion or modification on the remote server. This attack requires human interaction. (CVE-2018-2911)
  • An unauthenticated attacker with Network access can compromise Oracle GlassFish Server. An attacker who successfully exploited the vulnerability could cause a hang or a complete DOS of Oracle GlassFish Server. (CVE-2018-3152)
  • An unauthenticated attacker with network access could compromise Oracle GlassFish Server. An attacker who successfully exploited the vulnerability could have read access to Oracle GlassFish Server information. (CVE-2018-3210)
#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(119559);
  script_version("1.2");
  script_cvs_date("Date: 2019/11/01");

  script_cve_id("CVE-2018-2911", "CVE-2018-3152", "CVE-2018-3210");
  script_bugtraq_id(105618);

  script_name(english:"Oracle GlassFish Server 3.1.2.x < 3.1.2.19 (October 2018 CPU)");
  script_summary(english:"Checks the version of Oracle GlassFish");

  script_set_attribute(attribute:"synopsis", value:
"The remote web server is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"According to its self-reported version, the Oracle GlassFish Server
running on the remote host is 3.1.2.x prior to 3.1.2.19. Is is, 
therefore, affected by multiple vulnerabilities:

  - A vulnerability could allow an Attacker with unauthenticated 
    network access to compromise Oracle GlassFish Server. A successful 
    attack would allow the access to critical data including
    creation, deletion or modification on the remote server. This 
    attack requires human interaction. (CVE-2018-2911)
  - An unauthenticated attacker with Network access can compromise 
    Oracle GlassFish Server. An attacker who successfully exploited 
    the vulnerability could cause a hang or a complete DOS of Oracle 
    GlassFish Server. (CVE-2018-3152)
  - An unauthenticated attacker with network access could compromise 
    Oracle GlassFish Server. An attacker who successfully exploited 
    the vulnerability could have read access to Oracle GlassFish 
    Server information. (CVE-2018-3210)");
  # https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?705136d8");
  # https://support.oracle.com/epmos/faces/ui/patch/PatchDetail.jspx?_afrLoop=542144881266123&parent=DOCUMENT&patchId=28648149
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?28d119b1");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Oracle GlassFish Server version 3.1.2.19 or later as
referenced in the October 2018 Oracle Critical Patch Update advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-2911");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/10/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/10/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/12/11");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:glassfish_server");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Web Servers");

  script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("glassfish_detect.nasl");
  script_require_keys("www/glassfish");

  exit(0);
}

include('global_settings.inc');
include('misc_func.inc');
include('audit.inc');
include('glassfish.inc');

# Check for GlassFish
get_kb_item_or_exit('www/glassfish');

port = get_glassfish_port(default:8080);

# Get the version number out of the KB.
ver = get_kb_item_or_exit('www/' + port + '/glassfish/version');
banner = get_kb_item_or_exit("www/" + port + '/glassfish/source');
pristine = get_kb_item_or_exit('www/' + port + '/glassfish/version/pristine');


if (ver =~ "^3\.1\.2")
{
  min = '3.1.2';
  fix = '3.1.2.19';
}

if (!empty_or_null(ver) && ver_compare(minver:min, ver:ver, fix:fix, strict:FALSE) < 0)
{
  report =
    '\n  Version source    : ' + banner +
    '\n  Installed version : ' + pristine +
    '\n  Fixed version     : ' + fix +
    '\n';
  security_report_v4(port:port, extra:report, severity:SECURITY_WARNING);
}
else audit(AUDIT_LISTEN_NOT_VULN, 'Oracle GlassFish', port, pristine);
VendorProductVersionCPE
oracleglassfish_servercpe:/a:oracle:glassfish_server

Related

nvd 3
openvas 1
cve 3
prion 3
cvelist 3
oracle 1
nvd
nvd
CVE-2018-3210
2018-10-17 01:31:23
CVE-2018-2911
2018-10-17 01:31:14
CVE-2018-3152
2018-10-17 01:31:17
openvas
openvas
Oracle GlassFish Server Multiple Security Vulnerabilities
2017-04-19 00:00:00
cve
cve
CVE-2018-3210
2018-10-17 01:31:23
CVE-2018-3152
2018-10-17 01:31:17
CVE-2018-2911
2018-10-17 01:31:14
prion
prion
Buffer overflow
2018-10-17 01:31:00
Design/Logic Flaw
2018-10-17 01:31:00
Buffer overflow
2018-10-17 01:31:00
cvelist
cvelist
CVE-2018-3210
2018-10-17 01:00:00
CVE-2018-2911
2018-10-17 01:00:00
CVE-2018-3152
2018-10-17 01:00:00
oracle
oracle
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L

0.002 Low

EPSS

Percentile

64.6%

JSON
Related for GLASSFISH_CPU_OCT_2018.NASL
nvd3openvas1cve3prion3cvelist3oracle1