Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.MYSQL_ENTERPRISE_MONITOR_8_0_37.NASL
HistoryJan 19, 2024 - 12:00 a.m.

Oracle MySQL Enterprise Monitor (January 2024 CPU)

2024-01-1900:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
oracle mysql
enterprise monitor
january 2024
vulnerabilities
unauthorized access
takeover
critical data
remote access
nessus
scanner

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.09 Low

EPSS

Percentile

94.7%

JSON

The versions of MySQL Enterprise Monitor installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2024 CPU advisory.

  • Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/C++ (OpenSSL)). Supported versions that are affected are 8.2.0 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Connectors accessible data. (CVE-2023-5363)

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Apache Tomcat)). Supported versions that are affected are 8.0.36 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all MySQL Enterprise Monitor accessible data.
    (CVE-2023-46589)

  • Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General (Apache Struts)). Supported versions that are affected are 8.0.36 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL Enterprise Monitor. (CVE-2023-50164)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(189239);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/19");

  script_cve_id("CVE-2023-5363", "CVE-2023-46589", "CVE-2023-50164");
  script_xref(name:"IAVA", value:"2024-A-0034-S");

  script_name(english:"Oracle MySQL Enterprise Monitor (January 2024 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The versions of MySQL Enterprise Monitor installed on the remote host are affected by multiple vulnerabilities as
referenced in the January 2024 CPU advisory.

  - Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/C++ (OpenSSL)). 
    Supported versions that are affected are 8.2.0 and prior. Easily exploitable vulnerability allows 
    unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. 
    Successful attacks of this vulnerability can result in unauthorized access to critical data or complete 
    access to all MySQL Connectors accessible data. (CVE-2023-5363)

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General 
    (Apache Tomcat)). Supported versions that are affected are 8.0.36 and prior. Easily exploitable 
    vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise 
    MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in unauthorized creation, 
    deletion or modification access to critical data or all MySQL Enterprise Monitor accessible data.
    (CVE-2023-46589)

  - Vulnerability in the MySQL Enterprise Monitor product of Oracle MySQL (component: Monitoring: General 
    (Apache Struts)). Supported versions that are affected are 8.0.36 and prior. Easily exploitable 
    vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise 
    MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL 
    Enterprise Monitor. (CVE-2023-50164)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpujan2024cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpujan2024.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the January 2024 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-50164");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/01/17");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/01/17");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/01/19");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:mysql_enterprise_monitor");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("mysql_enterprise_monitor_web_detect.nasl", "oracle_mysql_enterprise_monitor_local_nix_detect.nbin", "oracle_mysql_enterprise_monitor_local_detect.nbin", "macosx_mysql_enterprise_monitor_installed.nbin");
  script_require_keys("installed_sw/MySQL Enterprise Monitor");

  exit(0);
}

include('vcf.inc');

var app_info = vcf::combined_get_app_info(app:'MySQL Enterprise Monitor');

var constraints = [
  { 'min_version' : '8.0', 'fixed_version' : '8.0.37' }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
oraclemysql_enterprise_monitorcpe:/a:oracle:mysql_enterprise_monitor

Related

qualysblog 3
hivepro 1
ibm 20
srcincite 2
cve 3
githubexploit 9
ubuntucve 3
veracode 3
github 2
saint 2
cisco 1
malwarebytes 2
akamaiblog 1
f5 3
osv 14
cvelist 3
cnvd 1
openvas 17
adobe 1
nessus 42
trendmicroblog 1
prion 3
nvd 3
redhatcve 3
cgr 2
tomcat 4
redhat 10
kaspersky 3
almalinux 3
atlassian 8
rocky 1
freebsd 1
openssl 1
mageia 2
alpinelinux 1
amazon 1
oraclelinux 4
debiancve 2
debian 4
wolfi 1
redos 2
thn 1
impervablog 1
nodejsblog 1
photon 1
ubuntu 1
cloudfoundry 1
qualysblog
qualysblog
Detect and Manage the Risk of Apache Struts (CVE-2023-50164) Comprehensively
2024-01-12 22:44:26
Announcing TotalCloud™ 2.0 with TruRisk™ Insights: The Future of Cloud and SaaS Security
2024-02-07 13:55:00
Yet Another Apache Struts 2 Vulnerability – CVE-2023-50164
2023-12-26 14:06:14
hivepro
hivepro
Critical Remote Code Execution Flaw Uncovered in Apache Struts 2
2023-12-15 06:56:04
ibm
ibm
Security Bulletin: Struts Vulnerability - Order Management does contain the Struts code and it is vulnerable with lower risk [CVE-2023-50164]
2024-02-07 22:18:44
Security Bulletin: Due to use of Apache Struts, Netcool Operation Insight is vulnerable to arbitrary code execution.
2024-05-03 11:02:53
Security Bulletin: A vulnerability in Apache Struts affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products
2024-05-01 09:28:35
srcincite
srcincite
SRC-2024-0001 : Trackplus Allegra Service Desk Module UploadHelper upload Directory Traversal Remote Code Execution Vulnerability
2023-11-08 00:00:00
SRC-2023-0004 : Apache Struts Security Feature Bypass Remote Code Execution Vulnerability
2023-11-08 00:00:00
cve
cve
CVE-2023-50164
2023-12-07 09:15:07
CVE-2023-46589
2023-11-28 16:15:06
CVE-2023-5363
2023-10-25 18:17:43
githubexploit
githubexploit
Exploit for Files or Directories Accessible to External Parties in Apache Struts
2023-12-30 21:37:08
Exploit for Files or Directories Accessible to External Parties in Apache Struts
2023-12-20 08:46:19
Exploit for Files or Directories Accessible to External Parties in Apache Struts
2023-12-22 02:20:11
ubuntucve
ubuntucve
CVE-2023-50164
2023-12-07 00:00:00
CVE-2023-46589
2023-11-28 00:00:00
CVE-2023-5363
2023-10-24 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2023-12-14 16:09:57
Request Smuggling
2023-11-29 06:11:28
Information Disclosure
2023-10-28 00:48:09
github
github
Apache Struts vulnerable to path traversal
2023-12-07 09:30:45
Apache Tomcat Improper Input Validation vulnerability
2023-11-28 18:30:23
saint
saint
Apache Struts file upload directory traversal
2023-12-20 00:00:00
Apache Struts file upload directory traversal
2023-12-20 00:00:00
cisco
cisco
Apache Struts Vulnerability Affecting Cisco Products: December 2023
2023-12-12 16:00:00
malwarebytes
malwarebytes
Recently-patched Apache Struts vulnerability used in worldwide attacks
2023-12-14 21:35:04
Microsoft patches 34 vulnerabilities, including one zero-day
2023-12-13 16:39:23
akamaiblog
akamaiblog
Observed Exploitation Attempts of Struts 2 S2-066 Vulnerability (CVE-2023-50164)
2023-12-14 10:00:40
f5
f5
K000137931 : Apache Struts vulnerability CVE-2023-50164
2023-12-15 00:00:00
K000137926 : Apache Tomcat vulnerability CVE-2023-46589
2023-12-18 00:00:00
K000138177 : OpenSSL vulnerability CVE-2023-5363
2024-01-10 00:00:00
osv
osv
CVE-2023-50164
2023-12-07 09:15:07
Apache Struts vulnerable to path traversal
2023-12-07 09:30:45
tomcat9 - security update
2024-01-05 00:00:00
cvelist
cvelist
CVE-2023-50164 Apache Struts: File upload component had a directory traversal vulnerability
2023-12-07 08:49:19
CVE-2023-46589 Apache Tomcat: HTTP request smuggling via malformed trailer headers
2023-11-28 15:31:52
CVE-2023-5363 Incorrect cipher key & IV length processing
2023-10-24 15:31:40
cnvd
cnvd
Apache Struts Directory Traversal Vulnerability
2023-12-12 00:00:00
openvas
openvas
Apache Struts Security Update (S2-066)
2023-12-08 00:00:00
Apache Tomcat Request Smuggling Vulnerability (Nov 2023) - Linux
2023-11-29 00:00:00
Apache Tomcat Request Smuggling Vulnerability (Nov 2023) - Windows
2023-11-29 00:00:00
adobe
adobe
APSB23-77 : Security update available for Adobe Experience Manager Forms
2023-12-15 00:00:00
nessus
nessus
Cisco Identity Services Engine RCE (cisco-sa-struts-C2kCMkmT)
2023-12-21 00:00:00
Adobe Experience Manager 6.0.0.0 < 6.5.19.1 Arbitrary code execution (APSB23-77)
2024-01-07 00:00:00
Apache Struts 2.5.0 < 2.5.33 / 6.0.0 < 6.3.0.2 Remote Code Execution (S2-066)
2023-12-07 00:00:00
trendmicroblog
trendmicroblog
Decoding CVE-2023-50164: Unveiling the Apache Struts File Upload Exploit
2023-12-15 00:00:00
prion
prion
Design/Logic Flaw
2023-12-07 09:15:00
Design/Logic Flaw
2023-10-25 18:17:00
Input validation
2023-11-28 16:15:00
nvd
nvd
CVE-2023-50164
2023-12-07 09:15:07
CVE-2023-5363
2023-10-25 18:17:43
CVE-2023-46589
2023-11-28 16:15:06
redhatcve
redhatcve
CVE-2023-50164
2023-12-11 06:27:16
CVE-2023-46589
2023-11-29 09:26:39
CVE-2023-5363
2023-10-25 11:57:11
cgr
cgr
CVE-2023-46589 vulnerabilities
2024-05-19 03:07:16
CVE-2023-5363 vulnerabilities
2024-05-19 03:07:16
tomcat
tomcat
Fixed in Apache Tomcat 10.1.16
2023-11-14 00:00:00
Fixed in Apache Tomcat 8.5.96
2023-11-13 00:00:00
Fixed in Apache Tomcat 9.0.83
2023-11-15 00:00:00
redhat
redhat
(RHSA-2024:0532) Important: tomcat security update
2024-01-29 00:58:19
(RHSA-2024:1134) Important: tomcat security update
2024-03-05 15:32:17
(RHSA-2024:0539) Important: tomcat security update
2024-01-29 08:03:51
kaspersky
kaspersky
KLA62192 ACE vulnerability in Apache Tomcat
2023-11-13 00:00:00
KLA62193 ACE vulnerability in Apache Tomcat
2023-11-14 00:00:00
KLA62191 ACE vulnerability in Apache Tomcat
2023-11-15 00:00:00
almalinux
almalinux
Important: tomcat security update
2024-01-29 00:00:00
Important: tomcat security update
2024-03-05 00:00:00
Moderate: openssl security update
2024-01-22 00:00:00
atlassian
atlassian
Request Smuggling org.apache.tomcat:tomcat-catalina Dependency in Confluence Data Center and Server
2024-01-17 06:46:32
Request Smuggling org.apache.tomcat:tomcat-catalina Dependency in Bamboo Data Center and Server
2023-12-14 07:45:15
Upgrade Tomcat to fix CVE-2023-46589
2023-12-03 23:55:41
rocky
rocky
tomcat security update
2024-02-12 20:16:50
freebsd
freebsd
OpenSSL -- potential loss of confidentiality
2023-10-24 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2023-5363
2023-10-24 00:00:00
mageia
mageia
Updated quictls packages fix a security vulnerability
2023-11-12 03:44:53
Updated openssl packages fix a security vulnerability
2023-11-09 15:55:51
alpinelinux
alpinelinux
CVE-2023-5363
2023-10-25 18:17:43
amazon
amazon
Medium: tomcat8
2024-01-19 01:19:00
oraclelinux
oraclelinux
tomcat security update
2024-01-29 00:00:00
openssl security update
2024-01-22 00:00:00
tomcat security update
2024-03-07 00:00:00
debiancve
debiancve
CVE-2023-46589
2023-11-28 16:15:06
CVE-2023-5363
2023-10-25 18:17:43
debian
debian
[SECURITY] [DSA 5532-1] openssl security update
2023-10-24 19:19:01
[SECURITY] [DLA 3707-1] tomcat9 security update
2024-01-05 09:40:41
[SECURITY] [DSA 5665-1] tomcat10 security update
2024-04-17 22:03:15
wolfi
wolfi
CVE-2023-5363 vulnerabilities
2024-07-03 16:16:08
redos
redos
ROS-20231110-02
2023-11-10 00:00:00
ROS-20240405-12
2024-04-05 00:00:00
thn
thn
New Critical RCE Vulnerability Discovered in Apache Struts 2 - Patch Now
2023-12-12 05:23:00
impervablog
impervablog
CVE-2023-50164: A Critical Vulnerability in Apache Struts
2023-12-19 12:34:31
nodejsblog
nodejsblog
OpenSSL Recent Security Patches
2023-10-26 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0124
2023-10-24 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2023-10-24 00:00:00
cloudfoundry
cloudfoundry
USN-6450-1: OpenSSL vulnerabilities | Cloud Foundry
2023-11-09 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.09 Low

EPSS

Percentile

94.7%

JSON
Related for MYSQL_ENTERPRISE_MONITOR_8_0_37.NASL
qualysblog3hivepro1ibm20srcincite2cve3githubexploit9ubuntucve3veracode3github2saint2cisco1malwarebytes2akamaiblog1f53osv14cvelist3cnvd1openvas17adobe1nessus42trendmicroblog1prion3nvd3redhatcve3cgr2tomcat4redhat10kaspersky3almalinux3atlassian8rocky1freebsd1openssl1mageia2alpinelinux1amazon1oraclelinux4debiancve2debian4wolfi1redos2thn1impervablog1nodejsblog1photon1ubuntu1cloudfoundry1