Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2022 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_ENTERPRISE_MANAGER_CPU_JAN_2021.NASL
HistoryJan 22, 2021 - 12:00 a.m.

Oracle Enterprise Manager Cloud Control (Jan 2021 CPU)

2021-01-2200:00:00
This script is Copyright (C) 2021-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
29
JSON

The 13.3.0.0, 13.4.0.0, and 13.2.1.0 versions of Enterprise Manager Base Platform installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2021 CPU advisory.

  • Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager (component:
    Reporting Framework (Apache Camel)). Supported versions that are affected are 13.3.0.0 and 13.4.0.0.
    Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Enterprise Manager Base Platform. Successful attacks of this vulnerability can result in takeover of Enterprise Manager Base Platform.

  • Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager (component:
    Reporting Framework (Apache Commons FileUpload)). Supported versions that are affected are 13.3.0.0 and 13.4.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Enterprise Manager Base Platform. Successful attacks of this vulnerability can result in takeover of Enterprise Manager Base Platform.

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(145267);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/12/05");

  script_cve_id("CVE-2016-1000031", "CVE-2020-11973");
  script_xref(name:"IAVA", value:"2021-A-0032");
  script_xref(name:"CEA-ID", value:"CEA-2021-0004");

  script_name(english:"Oracle Enterprise Manager Cloud Control (Jan 2021 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The 13.3.0.0, 13.4.0.0, and 13.2.1.0 versions of Enterprise Manager Base Platform installed on the remote host are
affected by multiple vulnerabilities as referenced in the January 2021 CPU advisory.

  - Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager (component:
    Reporting Framework (Apache Camel)). Supported versions that are affected are 13.3.0.0 and 13.4.0.0.
    Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to
    compromise Enterprise Manager Base Platform. Successful attacks of this vulnerability can result in
    takeover of Enterprise Manager Base Platform.

  - Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager (component:
    Reporting Framework (Apache Commons FileUpload)). Supported versions that are affected are 13.3.0.0 and
    13.4.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to
    compromise Enterprise Manager Base Platform. Successful attacks of this vulnerability can result in
    takeover of Enterprise Manager Base Platform.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/a/tech/docs/cpujan2021cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpujan2021.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the January 2021 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-11973");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/01/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/01/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/01/22");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:enterprise_manager");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2021-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_enterprise_manager_installed.nbin", "oracle_bi_publisher_installed.nbin");
  script_require_keys("installed_sw/Oracle Enterprise Manager Cloud Control");

  exit(0);
}

include('vcf.inc');

app_info = vcf::get_app_info(app:'Oracle Enterprise Manager Cloud Control');

## IMPORTANT: See https://support.oracle.com/epmos/faces/DocumentDisplay?id=2725756.1
## CVE-2016-1000031, CVE-2020-11973 require Oracle Business Intelligence BUNDLE PATCH 12.2.1.3.200114 Patch 30499022 or later
## they only apply to 13.3 and 13.4 though

if (app_info.version =~ "^13\.[34]")
{
  ## now retrieve and check BI patches
  bi_app_info = vcf::get_app_info(app:'Oracle Business Intelligence Publisher');

  constraints = [
    { 'min_version' : '12.2.1.3', 'fixed_version' : '12.2.1.3.200114', 'fixed_display': '12.2.1.3.200114 (Oracle BI)' }
  ];

  # checking against the BI version, as OBI BUNDLE PATCH 12.2.1.3.200114 Patch 30499022 or later is requird
  vcf::check_version_and_report(app_info:bi_app_info, constraints:constraints, severity:SECURITY_HOLE);
}
else
  audit(AUDIT_INST_VER_NOT_VULN, app_info.version);
VendorProductVersionCPE
oracleenterprise_managercpe:/a:oracle:enterprise_manager

Related

github 2
osv 3
redhatcve 1
prion 2
veracode 1
cve 2
ibm 67
nessus 15
freebsd 2
openvas 6
atlassian 6
f5 1
debiancve 1
checkpoint_advisories 2
ubuntucve 1
zdi 1
cisco 1
cisa 1
symantec 1
suse 1
threatpost 2
redhat 1
oracle 14
github
github
Apache Camel Netty enables Java deserialization by default
2020-05-21 21:09:04
Improper Access Control in commons-fileupload
2018-12-21 17:51:51
osv
osv
Apache Camel Netty enables Java deserialization by default
2020-05-21 21:09:04
CVE-2020-11973
2020-05-14 17:15:12
Improper Access Control in commons-fileupload
2018-12-21 17:51:51
redhatcve
redhatcve
CVE-2020-11973
2020-06-18 12:25:08
prion
prion
Deserialization of untrusted data
2020-05-14 17:15:00
Remote code execution
2016-10-25 14:29:00
veracode
veracode
Insecure Deserialization
2020-05-15 05:27:21
cve
cve
CVE-2020-11973
2020-05-14 17:15:00
CVE-2016-1000031
2016-10-25 14:29:00
ibm
ibm
Security Bulletin: Vulnerability in Apache Commons FileUpload affects IBM Spectrum Control and Tivoli Storage Productivity Center (CVE-2016-1000031)
2022-02-22 19:27:34
Security Bulletin: IBM FileNet Content Manager, IBM Content Foundation, and IBM Case Foundation are affected by the ability to execute remote attacker’s arbitrary code on a target machine vulnerability
2018-06-17 12:19:02
Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Rational ClearCase (CVE-2016-1000031)
2018-07-10 08:34:12
nessus
nessus
Apache Struts <= 2.3.36 FileUpload Deserialization Vulnerability
2018-11-05 00:00:00
openSUSE Security Update : jakarta-commons-fileupload (openSUSE-2019-1399)
2019-05-16 00:00:00
FreeBSD : Axis2 -- Security vulnerability on dependency Apache Commons FileUpload (c1265e85-7c95-11e7-93af-005056925db4)
2017-08-09 00:00:00
freebsd
freebsd
Axis2 -- Security vulnerability on dependency Apache Commons FileUpload
2016-11-14 00:00:00
payara -- Multiple vulnerabilities
2016-06-16 00:00:00
openvas
openvas
openSUSE: Security Advisory for jakarta-commons-fileupload (openSUSE-SU-2019:1399-1)
2019-05-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:1212-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:1214-1)
2021-04-19 00:00:00
atlassian
atlassian
Fisheye had a vulnerable version of Apache Commons FileUpload - CVE-2016-1000031
2019-02-14 22:03:17
Crucible had a vulnerable version of Apache Commons FileUpload - CVE-2016-1000031
2019-02-14 21:59:23
Crucible had a vulnerable version of Apache Commons FileUpload - CVE-2016-1000031
2019-02-14 21:59:23
f5
f5
K25206238 : Apache Commons FileUpload vulnerability CVE-2016-1000031
2018-04-02 00:00:00
debiancve
debiancve
CVE-2016-1000031
2016-10-25 14:29:00
checkpoint_advisories
checkpoint_advisories
Apache Struts Remote Code Execution (CVE-2016-1000031)
2018-11-07 00:00:00
Apache Struts 2 Commons FileUpload Insecure Deserialization (CVE-2016-1000031)
2019-02-14 00:00:00
ubuntucve
ubuntucve
CVE-2016-1000031
2016-10-25 00:00:00
zdi
zdi
Novell NetIQ Sentinel Commons DiskFileItem Deserialization of Untrusted Data Remote Code Execution Vulnerability
2016-10-17 00:00:00
cisco
cisco
Apache Struts Commons FileUpload Library Remote Code Execution Vulnerability Affecting Cisco Products: November 2018
2018-11-07 00:00:00
cisa
cisa
Apache Releases Security Advisory for Apache Struts
2018-11-05 00:00:00
symantec
symantec
Novell NetIQ Sentinel CVE-2016-1000031 Remote Code Execution Vulnerability
2016-10-17 00:00:00
suse
suse
Security update for jakarta-commons-fileupload (important)
2019-05-15 00:00:00
threatpost
threatpost
Oracle Squashes 53 Critical Bugs in April Security Update
2019-04-17 13:33:09
Apache Struts Warns Users of Two-Year-Old Vulnerability
2018-11-06 12:27:15
redhat
redhat
(RHSA-2020:5568) Important: Red Hat Fuse 7.8.0 release and security update
2020-12-16 12:07:05
oracle
oracle
Oracle Critical Patch Update Advisory - January 2021
2021-01-19 00:00:00
Oracle Critical Patch Update Advisory - October 2020
2020-10-20 00:00:00
Oracle Critical Patch Update Advisory - October 2019
2020-01-22 00:00:00
JSON
Related for ORACLE_ENTERPRISE_MANAGER_CPU_JAN_2021.NASL
github2osv3redhatcve1prion2veracode1cve2ibm67nessus15freebsd2openvas6atlassian6f51debiancve1checkpoint_advisories2ubuntucve1zdi1cisco1cisa1symantec1suse1threatpost2redhat1oracle14