Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.MYSQL_ENTERPRISE_MONITOR_8_0_35.NASL
HistoryJul 21, 2023 - 12:00 a.m.

Oracle MySQL Enterprise Monitor (Jul 2023 CPU)

2023-07-2100:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

The versions of MySQL Enterprise Monitor installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2023 CPU advisory.

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (OpenSSL)). Supported versions that are affected are 8.0.34 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor. (CVE-2023-2650)

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Spring Security)). Supported versions that are affected are 8.0.34 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL Enterprise Monitor. (CVE-2023-20862)

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Apache Commons FileUpload)). Supported versions that are affected are 8.0.34 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor.
    (CVE-2023-24998)

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Apache Tomcat)). Supported versions that are affected are 8.0.34 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor. (CVE-2023-28709)

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Apache Ivy)). Supported versions that are affected are 8.0.34 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all MySQL Enterprise Monitor accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor.
    (CVE-2022-37865)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(178719);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/20");

  script_cve_id(
    "CVE-2023-2650",
    "CVE-2023-20862",
    "CVE-2023-24998",
    "CVE-2023-28709",
    "CVE-2023-34396",
    "CVE-2022-37865"
  );
  script_xref(name:"IAVA", value:"2023-A-0368-S");

  script_name(english:"Oracle MySQL Enterprise Monitor (Jul 2023 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The versions of MySQL Enterprise Monitor installed on the remote host are affected by multiple vulnerabilities as
referenced in the July 2023 CPU advisory.

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General
    (OpenSSL)). Supported versions that are affected are 8.0.34 and prior. Easily exploitable vulnerability
    allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise
    Monitor. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or
    frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor. (CVE-2023-2650)

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General
    (Spring Security)). Supported versions that are affected are 8.0.34 and prior. Easily exploitable
    vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise
    MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL
    Enterprise Monitor. (CVE-2023-20862)

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General
    (Apache Commons FileUpload)). Supported versions that are affected are 8.0.34 and prior. Easily
    exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to
    compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized
    ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor.
    (CVE-2023-24998)

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General
    (Apache Tomcat)). Supported versions that are affected are 8.0.34 and prior. Easily exploitable
    vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise
    MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized ability to
    cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor. (CVE-2023-28709)

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General
    (Apache Ivy)). Supported versions that are affected are 8.0.34 and prior. Easily exploitable vulnerability
    allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise
    Monitor. Successful attacks of this vulnerability can result in unauthorized creation, deletion or
    modification access to critical data or all MySQL Enterprise Monitor accessible data and unauthorized
    ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Monitor.
    (CVE-2022-37865)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpujul2023cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpujul2023.html#AppendixMSQL");
  script_set_attribute(attribute:"see_also", value:"https://support.oracle.com/rs?type=doc&id=2958912.1");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the July 2023 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-37865");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/07/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/07/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/07/21");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:mysql_enterprise_monitor");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("mysql_enterprise_monitor_web_detect.nasl", "oracle_mysql_enterprise_monitor_local_nix_detect.nbin", "oracle_mysql_enterprise_monitor_local_detect.nbin", "macosx_mysql_enterprise_monitor_installed.nbin");
  script_require_keys("installed_sw/MySQL Enterprise Monitor");

  exit(0);
}

include('vcf.inc');

var app_info = vcf::combined_get_app_info(app:'MySQL Enterprise Monitor');

var constraints = [{ 'min_version' : '8.0', 'fixed_version' : '8.0.35' }];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
oraclemysql_enterprise_monitorcpe:/a:oracle:mysql_enterprise_monitor

Related

nessus 52
osv 12
ibm 54
amazon 2
atlassian 6
tomcat 5
github 4
ubuntucve 2
openvas 21
redhatcve 3
f5 2
prion 5
debiancve 1
cve 4
mageia 3
redhat 4
almalinux 2
oraclelinux 2
cnvd 2
veracode 4
gentoo 1
kaspersky 2
cgr 2
freebsd 1
cloudlinux 1
cbl_mariner 1
vaadin 1
nessus
nessus
Apache Tomcat 8.5.85 < 8.5.88 DoS
2023-05-24 00:00:00
Atlassian Confluence 7.13.15 < 7.13.19 / 7.19.7 < 7.19.11 / 8.1.1 < 8.4.1 DoS (CONFSERVER-90185)
2023-08-16 00:00:00
Amazon Linux 2 : tomcat (ALASTOMCAT9-2023-001)
2023-09-27 00:00:00
osv
osv
CVE-2023-28709
2023-05-22 11:15:09
Apache Tomcat - Fix for CVE-2023-24998 was incomplete
2023-07-06 21:14:59
BIT-tomcat-2023-28709
2024-03-06 11:08:45
ibm
ibm
Security Bulletin: IBM Security SOAR is using a component with known vulnerabilities (CVE-2023-28709)
2023-06-29 14:57:18
Security Bulletin: Multiple vulnerabilities in Apache Tomcat affects App Connect Professional.
2023-07-06 17:20:23
Security Bulletin: IBM UrbanCode Deploy (UCD) is vulnerable to denial of service due to Apache Tomcat (CVE-2023-28709)
2023-07-12 16:06:12
amazon
amazon
Important: tomcat
2024-04-11 01:07:00
Important: tomcat8
2023-07-05 21:44:00
atlassian
atlassian
org.apache.tomcat:tomcat-catalina Vulnerability in Bamboo Data Center and Server
2023-09-18 21:40:49
Third-Party Dependency in Bamboo Data Center and Server
2023-09-07 02:01:05
Third-Party Dependency Vulnerability in Confluence
2023-07-13 10:00:53
tomcat
tomcat
Fixed in Apache Tomcat 9.0.74
2023-04-18 00:00:00
Fixed in Apache Tomcat 8.5.88
2023-04-19 00:00:00
Fixed in Apache Tomcat 10.1.8
2023-04-19 00:00:00
github
github
Apache Tomcat - Fix for CVE-2023-24998 was incomplete
2023-07-06 21:14:59
Apache Struts vulnerable to memory exhaustion
2023-06-14 09:30:42
Apache Ivy does not verify target path when extracting the archive
2022-11-07 12:00:33
ubuntucve
ubuntucve
CVE-2023-28709
2023-05-22 00:00:00
CVE-2023-34396
2023-06-14 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:2318-1)
2023-05-31 00:00:00
Apache Tomcat DoS Vulnerability (May 2023) - Linux
2023-05-22 00:00:00
Apache Tomcat DoS Vulnerability (May 2023) - Windows
2023-05-22 00:00:00
redhatcve
redhatcve
CVE-2023-28709
2023-05-26 17:11:03
CVE-2023-20862
2023-07-31 13:49:24
CVE-2022-37865
2023-03-27 20:43:04
f5
f5
K000135262 : Apache Tomcat vulnerability CVE-2023-28709
2023-06-29 00:00:00
K000135251 : Apache Struts vulnerability CVE-2023-34396
2023-06-27 00:00:00
prion
prion
Default credentials
2023-05-22 11:15:00
Code injection
2023-06-14 08:15:00
Code injection
2022-11-07 11:15:00
debiancve
debiancve
CVE-2023-28709
2023-05-22 11:15:09
cve
cve
CVE-2023-28709
2023-05-22 11:15:09
CVE-2022-37865
2022-11-07 11:15:00
CVE-2023-34396
2023-06-14 08:15:09
mageia
mageia
Updated tomcat packages fix security vulnerability
2023-05-31 09:41:32
Updated openssl packages fix security vulnerability
2023-06-08 22:34:59
Updated apache-commons-fileupload packages fix security vulnerability
2023-02-27 23:27:16
redhat
redhat
(RHSA-2023:7065) Moderate: tomcat security and bug fix update
2023-11-14 08:44:23
(RHSA-2023:6570) Moderate: tomcat security and bug fix update
2023-11-07 06:08:48
(RHSA-2023:4909) Moderate: Red Hat JBoss Web Server 5.7.4 release and security update
2023-09-04 12:12:47
almalinux
almalinux
Moderate: tomcat security and bug fix update
2023-11-14 00:00:00
Moderate: tomcat security and bug fix update
2023-11-07 00:00:00
oraclelinux
oraclelinux
tomcat security and bug fix update
2023-11-11 00:00:00
tomcat security and bug fix update
2023-11-17 00:00:00
cnvd
cnvd
Apache Struts Denial of Service Vulnerability (CNVD-2023-55422)
2023-06-16 00:00:00
Apache Tomcat Denial of Service Vulnerability (CNVD-2023-42970)
2023-05-28 00:00:00
veracode
veracode
Arbitrary File Write
2022-11-08 03:35:02
Improper Logout Implementation
2023-04-21 02:20:15
Denial Of Service (DoS)
2023-06-15 17:33:32
gentoo
gentoo
Apache Tomcat: Multiple Vulnerabilities
2023-05-30 00:00:00
kaspersky
kaspersky
KLA49273 DoS vulnerability in Apache Tomcat
2023-04-18 00:00:00
KLA49274 DoS vulnerability in Apache Tomcat
2023-04-19 00:00:00
cgr
cgr
CVE-2023-28709 vulnerabilities
2024-04-27 03:20:18
CVE-2023-24998 vulnerabilities
2024-04-27 03:20:18
freebsd
freebsd
OpenSSL -- Possible DoS translating ASN.1 identifiers
2023-05-30 00:00:00
cloudlinux
cloudlinux
openssl: Fix of CVE-2023-2650
2023-06-20 13:49:26
cbl_mariner
cbl_mariner
CVE-2023-2650 affecting package openssl 1.1.1k-15
2023-06-27 21:25:25
vaadin
vaadin
Apache Commons FileUpload - DoS with excessive parts
2023-06-22 00:00:00
JSON
Related for MYSQL_ENTERPRISE_MONITOR_8_0_35.NASL
nessus52osv12ibm54amazon2atlassian6tomcat5github4ubuntucve2openvas21redhatcve3f52prion5debiancve1cve4mageia3redhat4almalinux2oraclelinux2cnvd2veracode4gentoo1kaspersky2cgr2freebsd1cloudlinux1cbl_mariner1vaadin1