Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_BPM_CPU_JUL_2023.NASL
HistoryJul 20, 2023 - 12:00 a.m.

Oracle Business Process Management Suite (Jul 2023 CPU)

2023-07-2000:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

The version of Oracle Business Process Management Suite installed on the remote host is affected by multiple vulnerabilities, as referenced in the July 2023 CPU advisory, including:

  • Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware (component: Runtime Engine (Apache Xerces2 Java)). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Business Process Management Suite. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Business Process Management Suite. (CVE-2022-23437)

  • Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware (component: BPM Studio (jQueryUI)). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Business Process Management Suite. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Business Process Management Suite, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Business Process Management Suite accessible data as well as unauthorized read access to a subset of Oracle Business Process Management Suite accessible data. (CVE-2021-41184)

  • Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware (component: Installer (Apache Ant)). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Business Process Management Suite executes to compromise Oracle Business Process Management Suite.
    Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Business Process Management Suite. (CVE-2021-36374)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(178625);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/24");

  script_cve_id(
    "CVE-2021-34429",
    "CVE-2021-36373",
    "CVE-2021-36374",
    "CVE-2021-41184",
    "CVE-2022-23437"
  );
  script_xref(name:"IAVA", value:"2023-A-0365-S");
  script_xref(name:"IAVA", value:"2023-A-0559");

  script_name(english:"Oracle Business Process Management Suite (Jul 2023 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Oracle Business Process Management Suite installed on the remote host is affected by multiple
vulnerabilities, as referenced in the July 2023 CPU advisory, including:

  - Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware
    (component: Runtime Engine (Apache Xerces2 Java)). The supported version that is affected is
    12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via
    HTTP to compromise Oracle Business Process Management Suite. Successful attacks require human interaction
    from a person other than the attacker. Successful attacks of this vulnerability can result in
    unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Business
    Process Management Suite. (CVE-2022-23437)

  - Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware
    (component: BPM Studio (jQueryUI)). The supported version that is affected is 12.2.1.4.0. Easily
    exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise
    Oracle Business Process Management Suite. Successful attacks require human interaction from a person
    other than the attacker and while the vulnerability is in Oracle Business Process Management Suite,
    attacks may significantly impact additional products (scope change). Successful attacks of this
    vulnerability can result in unauthorized update, insert or delete access to some of Oracle Business
    Process Management Suite accessible data as well as unauthorized read access to a subset of Oracle
    Business Process Management Suite accessible data. (CVE-2021-41184)

  - Vulnerability in the Oracle Business Process Management Suite product of Oracle Fusion Middleware
    (component: Installer (Apache Ant)). The supported version that is affected is 12.2.1.4.0. Easily
    exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle
    Business Process Management Suite executes to compromise Oracle Business Process Management Suite.
    Successful attacks require human interaction from a person other than the attacker. Successful attacks of
    this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash
    (complete DOS) of Oracle Business Process Management Suite. (CVE-2021-36374)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpujul2023.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the July 2023 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-34429");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2021-41184");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/07/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/07/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/07/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:business_process_management_suite");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_bpm_installed.nbin");
  script_require_keys("installed_sw/Oracle Business Process Manager");

  exit(0);
}

include('vcf.inc');
var app_info = vcf::get_app_info(app:'Oracle Business Process Manager');

var constraints = [
  { 'min_version':'12.2.1.4.0', 'fixed_version' : '12.2.1.4.230530' }
];

vcf::check_version_and_report(
  app_info:app_info,
  constraints:constraints,
  severity:SECURITY_WARNING
);
VendorProductVersionCPE
oraclebusiness_process_management_suitecpe:/a:oracle:business_process_management_suite

Related

suse 4
redos 21
photon 7
nessus 32
ibm 35
openvas 24
archlinux 1
githubexploit 1
prion 5
veracode 5
osv 14
cve 5
amazon 1
cbl_mariner 4
alpinelinux 2
hackerone 1
github 7
ubuntucve 5
redhatcve 5
debiancve 5
cnvd 2
zdt 1
drupal 1
checkpoint_advisories 1
exploitdb 1
rubygems 1
nuclei 1
metasploit 1
ubuntu 1
fedora 3
f5 1
debian 1
suse
suse
Security update for ant (moderate)
2022-04-27 00:00:00
Security update for jetty-minimal (moderate)
2021-08-25 00:00:00
Security update for xerces-j2 (important)
2022-02-18 00:00:00
redos
redos
ROS-2-489
2021-09-08 00:00:00
ROS-2-486
2021-12-24 00:00:00
ROS-2-718
2021-12-23 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2021-0274
2021-07-26 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0374
2021-07-26 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0418
2021-07-26 00:00:00
nessus
nessus
EulerOS 2.0 SP5 : ant (EulerOS-SA-2021-2651)
2021-11-11 00:00:00
Photon OS 2.0: Apache PHSA-2021-2.0-0374
2021-07-26 00:00:00
Photon OS 1.0: Apache PHSA-2021-1.0-0418
2021-08-10 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities may affect Apache Ant used by Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections
2022-09-29 13:07:02
Security Bulletin: Vulnerabilities in Apache Ant affect IBM Installation Manager and IBM Packaging Utility
2021-11-24 18:44:02
Security Bulletin: Multiple vulnerabilities in Apache Ant affect IBM InfoSphere Information Server
2022-10-14 21:53:33
openvas
openvas
openSUSE: Security Advisory for ant (SUSE-SU-2022:1418-1)
2022-05-17 00:00:00
Huawei EulerOS: Security Advisory for ant (EulerOS-SA-2021-2453)
2021-09-24 00:00:00
Huawei EulerOS: Security Advisory for ant (EulerOS-SA-2021-2651)
2021-11-12 00:00:00
archlinux
archlinux
[ASA-202107-43] ant: denial of service
2021-07-20 00:00:00
githubexploit
githubexploit
Exploit for CVE-2021-34429
2021-11-03 09:13:12
prion
prion
Design/Logic Flaw
2021-07-14 07:15:00
Design/Logic Flaw
2021-07-14 07:15:00
Code injection
2021-10-26 15:15:00
veracode
veracode
Denial Of Service (DoS)
2021-07-15 00:46:23
Cross-site Scripting (XSS)
2021-10-27 05:33:22
Information Disclosure
2021-07-16 06:32:49
osv
osv
Improper Handling of Length Parameter Inconsistency in Apache Ant
2021-08-02 16:56:31
XSS in the `of` option of the `.position()` util in jquery-ui
2021-10-26 14:55:12
Improper Handling of Length Parameter Inconsistency in Apache Ant
2021-08-02 16:56:17
cve
cve
CVE-2021-36374
2021-07-14 07:15:00
CVE-2021-36373
2021-07-14 07:15:00
CVE-2021-41184
2021-10-26 15:15:00
amazon
amazon
Medium: ant
2022-12-01 20:31:00
cbl_mariner
cbl_mariner
CVE-2021-36374 affecting package javapackages-bootstrap for versions less than 1.14.0-2
2024-04-17 22:02:46
CVE-2021-36373 affecting package ant 1.10.9-2
2021-08-11 06:39:28
CVE-2021-36373 affecting package javapackages-bootstrap for versions less than 1.14.0-2
2024-04-17 22:02:46
alpinelinux
alpinelinux
CVE-2021-36374
2021-07-14 07:15:00
CVE-2021-36373
2021-07-14 07:15:00
hackerone
hackerone
Glassdoor: web.xml configuration file disclosure
2020-03-11 15:26:52
github
github
XSS in the `of` option of the `.position()` util in jquery-ui
2021-10-26 14:55:12
Improper Handling of Length Parameter Inconsistency in Apache Ant
2021-08-02 16:56:17
Improper Handling of Length Parameter Inconsistency in Apache Ant
2021-08-02 16:56:31
ubuntucve
ubuntucve
CVE-2021-36373
2021-07-14 00:00:00
CVE-2021-41184
2021-10-26 00:00:00
CVE-2021-36374
2021-07-14 00:00:00
redhatcve
redhatcve
CVE-2021-36373
2021-07-14 18:22:16
CVE-2021-41184
2021-11-01 17:41:18
CVE-2021-36374
2021-07-14 18:22:13
debiancve
debiancve
CVE-2021-36373
2021-07-14 07:15:00
CVE-2021-41184
2021-10-26 15:15:00
CVE-2021-36374
2021-07-14 07:15:00
cnvd
cnvd
Eclipse Jetty has an arbitrary file download vulnerability
2021-07-19 00:00:00
Apache Xerces Denial of Service Vulnerability
2022-01-26 00:00:00
zdt
zdt
Eclipse Jetty 11.0.5 - Sensitive File Disclosure Vulnerability
2021-11-03 00:00:00
drupal
drupal
Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2022-001
2022-01-19 00:00:00
checkpoint_advisories
checkpoint_advisories
jQuery UI Cross-site Scripting (CVE-2021-41184)
2022-10-19 00:00:00
exploitdb
exploitdb
Eclipse Jetty 11.0.5 - Sensitive File Disclosure
2021-11-03 00:00:00
rubygems
rubygems
XML Injection in Xerces Java affects Nokogiri
2022-04-10 21:00:00
nuclei
nuclei
Eclipse Jetty - Information Disclosure
2021-07-22 09:53:19
metasploit
metasploit
Jetty WEB-INF File Disclosure
2021-11-08 19:04:08
ubuntu
ubuntu
jQuery UI vulnerability
2022-09-09 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: js-jquery-ui-1.13.0-1.fc34
2021-11-20 01:11:49
[SECURITY] Fedora 35 Update: js-jquery-ui-1.13.0-1.fc35
2021-11-20 01:08:33
[SECURITY] Fedora 33 Update: js-jquery-ui-1.13.0-1.fc33
2021-11-20 01:45:55
f5
f5
K50455702 : jQuery vulnerabilities CVE-2021-41182, CVE-2021-41183, and CVE-2021-41184
2022-03-28 00:00:00
debian
debian
[SECURITY] [DLA 3230-1] jqueryui security update
2022-12-07 10:30:00
JSON
Related for ORACLE_BPM_CPU_JUL_2023.NASL
suse4redos21photon7nessus32ibm35openvas24archlinux1githubexploit1prion5veracode5osv14cve5amazon1cbl_mariner4alpinelinux2hackerone1github7ubuntucve5redhatcve5debiancve5cnvd2zdt1drupal1checkpoint_advisories1exploitdb1rubygems1nuclei1metasploit1ubuntu1fedora3f51debian1