Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.MYSQL_ENTERPRISE_MONITOR_8_0_30.NASL
HistoryApr 20, 2022 - 12:00 a.m.

Oracle MySQL Enterprise Monitor (Apr 2022 CPU)

2022-04-2000:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
67
JSON

The version of MySQL Enterprise Monitor installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2022 CPU advisory.

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Apache Log4j)). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL Enterprise Monitor. (CVE-2022-23305)

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Spring Framework)). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL Enterprise Monitor. (CVE-2022-22965)

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Apache Tomcat)). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor. (CVE-2021-42340)

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Spring Framework)). Supported versions that are affected are 8.0.29 and prior. The patterns for disallowedFields on a DataBinder are case sensitive which means a field is not effectively protected unless it is listed with both upper and lower case for the first character of the field, including upper and lower case for the first character of all nested fields within the property path. (CVE-2022-22968)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(159917);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/04/20");

  script_cve_id(
    "CVE-2021-41184",
    "CVE-2021-42340",
    "CVE-2021-44832",
    "CVE-2022-0778",
    "CVE-2022-22965",
    "CVE-2022-22968",
    "CVE-2022-23181",
    "CVE-2022-23305"
  );
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/04/25");
  script_xref(name:"IAVA", value:"2022-A-0168-S");

  script_name(english:"Oracle MySQL Enterprise Monitor (Apr 2022 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The version of MySQL Enterprise Monitor installed on the remote host are affected by multiple vulnerabilities as
referenced in the April 2022 CPU advisory.

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General
    (Apache Log4j)). Supported versions that are affected are 8.0.29 and prior. Easily exploitable
    vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise
    MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL
    Enterprise Monitor. (CVE-2022-23305)

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General
    (Spring Framework)). Supported versions that are affected are 8.0.29 and prior. Easily exploitable
    vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise
    MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL
    Enterprise Monitor. (CVE-2022-22965)

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General
    (Apache Tomcat)). Supported versions that are affected are 8.0.29 and prior. Easily exploitable
    vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise
    MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized ability to
    cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor. (CVE-2021-42340)

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General
    (Spring Framework)). Supported versions that are affected are 8.0.29 and prior. The patterns for 
    disallowedFields on a DataBinder are case sensitive which means a field is not effectively protected unless it is 
    listed with both upper and lower case for the first character of the field, including upper and lower case for the
     first character of all nested fields within the property path. (CVE-2022-22968)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpuapr2022cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpuapr2022.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the April 2022 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-44832");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2022-23305");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Spring Framework Class property RCE (Spring4Shell)');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/04/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/04/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2022/04/20");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:mysql_enterprise_monitor");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("mysql_enterprise_monitor_web_detect.nasl", "oracle_mysql_enterprise_monitor_local_nix_detect.nbin", "oracle_mysql_enterprise_monitor_local_detect.nbin", "macosx_mysql_enterprise_monitor_installed.nbin");
  script_require_keys("installed_sw/MySQL Enterprise Monitor");

  exit(0);
}

include('vcf.inc');

var app_info = vcf::combined_get_app_info(app:'MySQL Enterprise Monitor');

var constraints = [
  { 'min_version' : '8.0', 'fixed_version' : '8.0.30' }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
oraclemysql_enterprise_monitorcpe:/a:oracle:mysql_enterprise_monitor

Related

spring 3
nessus 22
redos 2
ibm 57
prion 4
veracode 6
redhatcve 3
openvas 20
debiancve 4
osv 13
ubuntucve 6
tomcat 4
atlassian 3
cisa 1
cnvd 2
kaspersky 3
github 4
debian 2
drupal 1
redhat 5
amazon 2
cve 4
f5 2
checkpoint_advisories 2
suse 3
mageia 1
freebsd 1
rapid7blog 2
trendmicroblog 1
msrc 1
talosblog 1
thn 1
githubexploit 7
nuclei 1
huntr 1
broadcom 1
fedora 2
attackerkb 1
spring
spring
Spring Framework Data Binding Rules Vulnerability (CVE-2022-22968)
2022-04-13 13:00:00
Spring Framework RCE, Early Announcement
2022-03-31 10:27:00
This Week in Spring - April 19th, 2022
2022-04-19 19:00:00
nessus
nessus
Oracle Identity Manager (Apr 2022 CPU)
2022-04-25 00:00:00
Dell Wyse Management Suite < 3.6.1 Multiple Vulnerabilities (DSA-2022-098)
2022-06-08 00:00:00
Oracle JDeveloper Multiple Vulnerabilities (April 2022 CPU)
2022-04-26 00:00:00
redos
redos
ROS-20221103-06
2022-11-03 00:00:00
ROS-20220125-04
2022-01-25 00:00:00
ibm
ibm
Security Bulletin: Due to use of Spring Framework, IBM Db2 Web Query for i is vulnerable to unprotected fields (CVE-2022-22968), remote code execution (CVE-2022-22965), and denial of service (CVE-2022-22950).
2022-06-10 05:17:19
Security Bulletin: IBM Telco Network Cloud Manager - Performance is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44832,CVE-2022-23302 and CVE-2022-23305)
2022-06-02 03:33:47
Security Bulletin: Vulnerability in Apache Tomcat affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products
2023-03-29 01:48:02
prion
prion
Path traversal
2022-04-14 21:15:00
Memory corruption
2021-10-14 20:15:00
Code injection
2021-10-26 15:15:00
veracode
veracode
Binding Rules Bypass
2022-04-14 13:40:29
Denial Of Service (DoS)
2021-10-15 08:23:36
Cross-site Scripting (XSS)
2021-10-27 05:33:22
redhatcve
redhatcve
CVE-2022-22968
2022-04-14 08:54:00
CVE-2021-41184
2021-11-01 17:41:18
CVE-2021-42340
2021-10-15 02:51:28
openvas
openvas
VMware Spring Framework < 5.2.21, 5.3.x < 5.3.19 Data Binding Rules Vulnerability
2022-04-19 00:00:00
VMware Spring Boot < 2.5.13, 2.6.x < 2.6.7 Data Binding Rules Vulnerability
2022-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0818-1)
2022-03-14 00:00:00
debiancve
debiancve
CVE-2022-22968
2022-04-14 21:15:00
CVE-2021-42340
2021-10-14 20:15:00
CVE-2021-41184
2021-10-26 15:15:00
osv
osv
BIT-tomcat-2021-42340
2024-03-06 11:09:50
Missing Release of Resource after Effective Lifetime in Apache Tomcat
2021-10-15 18:51:34
CVE-2021-42340
2021-10-14 20:15:09
ubuntucve
ubuntucve
CVE-2022-22968
2022-04-14 00:00:00
CVE-2021-41184
2021-10-26 00:00:00
CVE-2021-42340
2021-10-14 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 9.0.54
2021-10-01 00:00:00
Fixed in Apache Tomcat 8.5.72
2021-10-06 00:00:00
Fixed in Apache Tomcat 10.0.12
2021-10-01 00:00:00
atlassian
atlassian
Jira is affected by Tomcat CVE-2021-42340 - Denial of service via an OutOfMemoryError
2021-10-17 11:13:57
Denial of service via an OutOfMemoryError (Tomcat CVE-2021-42340)
2021-11-30 18:48:53
Jira is affected by Tomcat CVE-2021-42340 - Denial of service via an OutOfMemoryError
2021-10-17 11:13:57
cisa
cisa
Apache Releases Security Advisory for Tomcat  
2021-10-15 00:00:00
cnvd
cnvd
Apache Tomcat Resource Management Error Vulnerability (CNVD-2021-83785)
2021-10-18 00:00:00
Apache Tomcat permission permission and access control issues vulnerability
2022-01-28 00:00:00
kaspersky
kaspersky
KLA12322 DoS vulnerability in Apache Tomcat
2021-10-06 00:00:00
KLA12436 PE vulnerability in Apache Tomcat
2022-01-20 00:00:00
KLA12321 DoS vulnerability in Apache Tomcat
2021-10-01 00:00:00
github
github
Missing Release of Resource after Effective Lifetime in Apache Tomcat
2021-10-15 18:51:34
XSS in the `of` option of the `.position()` util in jquery-ui
2021-10-26 14:55:12
Improper handling of case sensitivity in Spring Framework
2022-04-15 00:00:32
debian
debian
[SECURITY] [DSA 5009-1] tomcat9 security update
2021-11-12 14:35:56
[SECURITY] [DLA 2870-1] apache-log4j2 security update
2021-12-29 22:57:42
drupal
drupal
Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2022-001
2022-01-19 00:00:00
redhat
redhat
(RHSA-2023:0272) Moderate: Red Hat support for Spring Boot 2.7.2.SP1 security update
2023-02-06 14:37:05
(RHSA-2022:1627) Low: Red Hat AMQ Broker 7.9.4 release and security update
2022-04-27 09:45:16
(RHSA-2022:1626) Low: Red Hat AMQ Broker 7.8.6 release and security update
2022-04-27 09:45:11
amazon
amazon
Important: tomcat8
2021-10-29 16:37:00
Medium: aws-kinesis-agent
2022-01-18 21:37:00
cve
cve
CVE-2021-42340
2021-10-14 20:15:00
CVE-2022-22968
2022-04-14 21:15:00
CVE-2021-41184
2021-10-26 15:15:00
f5
f5
K70052353 : Apache Tomcat vulnerability CVE-2021-42340
2021-10-21 00:00:00
K14122652 : Apache Log4j2 vulnerability CVE-2021-44832
2021-12-30 00:00:00
checkpoint_advisories
checkpoint_advisories
jQuery UI Cross-site Scripting (CVE-2021-41184)
2022-10-19 00:00:00
Apache Log4j Remote Code Execution (CVE-2021-44832)
2022-01-03 00:00:00
suse
suse
Security update for tomcat (important)
2022-03-14 00:00:00
Security update for log4j (moderate)
2021-12-30 00:00:00
Security update for log4j (moderate)
2022-01-02 00:00:00
mageia
mageia
Updated log4j packages fix security vulnerability
2022-01-03 10:36:40
freebsd
freebsd
Rundeck3 -- Log4J RCE vulnerability
2021-12-11 00:00:00
rapid7blog
rapid7blog
It’s the Summer of AppSec: Q2 Improvements to Our Industry-Leading DAST and WAAP
2022-07-13 15:45:00
XSS in JSON: Old-School Attacks for Modern Applications
2022-05-04 15:48:03
trendmicroblog
trendmicroblog
CVE-2022-22965: Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware
2022-04-08 00:00:00
msrc
msrc
Microsoft’s Response to CVE-2022-22965 Spring Framework
2022-04-05 07:00:00
talosblog
talosblog
Threat Advisory: Spring4Shell
2022-04-04 10:26:10
thn
thn
Security Patch Releases for Critical Zero-Day Bug in Java Spring Framework
2022-03-31 15:35:00
githubexploit
githubexploit
Exploit for Code Injection in Vmware Spring Framework
2022-12-28 04:50:16
Exploit for Code Injection in Vmware Spring Framework
2022-05-19 23:16:40
Exploit for Code Injection in Vmware Spring Framework
2022-11-28 14:34:51
nuclei
nuclei
Spring - Remote Code Execution
2022-04-01 11:43:45
huntr
huntr
Static Code Injection in playframework/play-samples
2022-01-16 20:00:18
broadcom
broadcom
BSA-2021-1658
2021-12-30 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: log4j-2.17.1-1.fc34
2022-01-06 00:51:53
[SECURITY] Fedora 35 Update: log4j-2.17.1-1.fc35
2022-01-06 01:12:26
attackerkb
attackerkb
CVE-2021-44832
2021-12-28 00:00:00
JSON
Related for MYSQL_ENTERPRISE_MONITOR_8_0_30.NASL
spring3nessus22redos2ibm57prion4veracode6redhatcve3openvas20debiancve4osv13ubuntucve6tomcat4atlassian3cisa1cnvd2kaspersky3github4debian2drupal1redhat5amazon2cve4f52checkpoint_advisories2suse3mageia1freebsd1rapid7blog2trendmicroblog1msrc1talosblog1thn1githubexploit7nuclei1huntr1broadcom1fedora2attackerkb1