Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_ESSBASE_CPU_JAN_2024.NASLHistoryJan 17, 2024 - 12:00 a.m.
Oracle Essbase Multiple Vulnerabilities (January 2024 CPU)
2024-01-1700:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
4
oracle
essbase
vulnerabilities
january 2024
security patch
openssl
tls
unauthenticated
network access
dos
takeover
apache commons compress
cve-2022-3602
cve-2023-38545
cve-2023-42503
nessus
7.1 High
AI Score
Confidence
Low
The version of Oracle Essbase installed on the remote host is missing a security patch from the January 2024 Critical Patch Update (CPU). It is, therefore, affected by:
-
Vulnerability in Oracle Essbase (component: Essbase Web Platform (OpenSSL)). Easily exploitable vulnerability allows unauthenticated attacker with network access via TLS to compromise Oracle Essbase. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Essbase. (CVE-2022-3602)
-
Vulnerability in Oracle Essbase (component: Essbase Web Platform (curl)). Easily exploitable vulnerability allows unauthenticated attacker with network access via SOCKS5 to compromise Oracle Essbase. Successful attacks of this vulnerability can result in takeover of Oracle Essbase. (CVE-2023-38545)
-
Vulnerability in Oracle Essbase (component: Essbase Web Platform (Apache Commons Compress)). Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Essbase executes to compromise Oracle Essbase. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Essbase. (CVE-2023-42503) Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(189117);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/19");
script_cve_id("CVE-2022-3602", "CVE-2023-38545", "CVE-2023-42503");
script_xref(name:"CEA-ID", value:"CEA-2023-0052");
script_xref(name:"CEA-ID", value:"CEA-2022-0036");
script_xref(name:"IAVA", value:"2024-A-0030");
script_name(english:"Oracle Essbase Multiple Vulnerabilities (January 2024 CPU)");
script_set_attribute(attribute:"synopsis", value:
"A business analytics solution installed on the remote host is affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The version of Oracle Essbase installed on the remote host is missing a security patch from the January 2024
Critical Patch Update (CPU). It is, therefore, affected by:
- Vulnerability in Oracle Essbase (component: Essbase Web Platform (OpenSSL)). Easily exploitable vulnerability
allows unauthenticated attacker with network access via TLS to compromise Oracle Essbase. Successful attacks
of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash
(complete DOS) of Oracle Essbase. (CVE-2022-3602)
- Vulnerability in Oracle Essbase (component: Essbase Web Platform (curl)). Easily exploitable vulnerability allows
unauthenticated attacker with network access via SOCKS5 to compromise Oracle Essbase. Successful attacks of this
vulnerability can result in takeover of Oracle Essbase. (CVE-2023-38545)
- Vulnerability in Oracle Essbase (component: Essbase Web Platform (Apache Commons Compress)). Easily exploitable
vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Essbase executes to
compromise Oracle Essbase. Successful attacks require human interaction from a person other than the attacker.
Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently
repeatable crash (complete DOS) of Oracle Essbase. (CVE-2023-42503)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpujan2024csaf.json");
script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpujan2024.html");
script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the January 2024 Oracle Critical Patch Update advisory.");
script_set_attribute(attribute:"agent", value:"windows");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-38545");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/01/16");
script_set_attribute(attribute:"patch_publication_date", value:"2024/01/16");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/01/17");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:essbase");
script_set_attribute(attribute:"stig_severity", value:"I");
script_set_attribute(attribute:"thorough_tests", value:"true");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("oracle_essbase_installed.nbin");
script_require_keys("Settings/ParanoidReport", "installed_sw/Oracle Essbase");
exit(0);
}
include('vcf.inc');
if (report_paranoia < 2) audit(AUDIT_PARANOID);
var app_info = vcf::get_app_info(app:'Oracle Essbase');
var constraints = [
{ 'equal' : '21.5.3.0.0', 'fixed_display' : '21.5.3.0.0 Patch 35938051 or later'}
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);Related
cgr
cgr
CVE-2023-42503 vulnerabilities
2024-05-10 09:06:43
CVE-2023-38545 vulnerabilities
2024-05-10 09:06:43
CVE-2022-3602 vulnerabilities
2024-05-10 09:06:43
veracode
veracode
Denial Of Service (DoS)
2023-10-09 15:43:22
Heap Buffer Overflow
2023-10-11 14:40:13
Buffer Overflow
2022-11-01 17:29:15
ibm
ibm
openvas
openvas
Apache Commons Compress 1.22 < 1.24.0 DoS Vulnerability
2023-09-14 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-3326)
2023-12-12 00:00:00
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1355)
2024-03-14 00:00:00
wolfi
wolfi
CVE-2023-42503 vulnerabilities
2024-05-10 03:06:50
CVE-2023-38545 vulnerabilities
2024-05-10 03:06:50
CVE-2022-3602 vulnerabilities
2024-05-10 03:06:50
hackerone
hackerone
curl: CVE-2023-38545: socks5 heap buffer overflow
2023-09-30 08:26:30
osv
osv
CVE-2023-38545
2023-10-18 04:15:11
CVE-2022-3602
2022-11-01 18:15:10
Apache Commons Compress denial of service vulnerability
2023-09-14 09:30:28
mscve
mscve
Hackerone: CVE-2023-38545 SOCKS5 heap buffer overflow
2023-10-19 07:00:00
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Haxx Libcurl
2023-10-16 10:04:19
Exploit for Out-of-bounds Write in Haxx Libcurl
2024-03-19 13:45:09
Exploit for Out-of-bounds Write in Haxx Libcurl
2023-10-17 09:03:15
veeam
veeam
Vulnerability Scanner Detection Related to CVE-2023-38545
2023-12-12 00:00:00
alpinelinux
alpinelinux
CVE-2023-38545
2023-10-18 04:15:11
CVE-2022-3602
2022-11-01 18:15:00
freebsd
freebsd
curl -- SOCKS5 heap buffer overflow
2023-09-30 00:00:00
redhatcve
redhatcve
CVE-2023-38545
2023-10-11 07:12:30
CVE-2022-3602
2022-11-01 16:25:59
cbl_mariner
cbl_mariner
CVE-2023-38545 affecting package tensorflow for versions less than 2.16.1-1
2024-04-17 22:02:46
CVE-2023-38545 affecting package cmake for versions less than 3.21.4-10
2024-03-19 17:21:46
CVE-2023-38545 affecting package curl for versions less than 8.3.0-2
2023-10-12 19:11:35
redhat
redhat
(RHSA-2024:2011) Important: Satellite Client Async Security Update
2024-04-23 17:14:55
(RHSA-2023:6745) Important: curl security update
2023-11-07 10:08:50
(RHSA-2023:5763) Important: curl security update
2023-10-17 08:40:49
rosalinux
rosalinux
Advisory ROSA-SA-2024-2379
2024-03-26 11:18:17
cve
cve
nessus
nessus
CentOS 9 : curl-7.76.1-28.el9
2024-02-29 00:00:00
FreeBSD : curl -- SOCKS5 heap buffer overflow (d6c19e8c-6806-11ee-9464-b42e991fc52e)
2023-10-11 00:00:00
libcurl 7.69 < 8.4.0 Heap Buffer Overflow
2023-10-11 00:00:00
debiancve
debiancve
cnvd
cnvd
cURL SOCKS5 Heap Overflow Vulnerability
2023-10-11 00:00:00
OpenSSL Remote Code Execution Vulnerability (CNVD-2022-73348)
2022-11-03 00:00:00
f5
f5
K000137257 : cURL vulnerabilities CVE-2023-38545
2023-10-17 00:00:00
OpenSSL vulnerabilities CVE-2022-3786 and CVE-2022-3602
2022-10-28 17:31:00
ubuntucve
ubuntucve
broadcom
broadcom
SOCKS5 heap buffer overflow (CVE-2023-38545)
2023-10-16 00:00:00
prion
prion
Heap overflow
2023-10-18 04:15:00
Stack overflow
2022-11-01 18:15:00
Input validation
2023-09-14 08:15:00
wizblog
wizblog
OpenSSL vulnerabilities: Everything you need to know
2022-10-29 04:11:46
rustsec
rustsec
X.509 Email Address 4-byte Buffer Overflow
2022-11-01 12:00:00
github
github
X.509 Email Address 4-byte Buffer Overflow
2022-11-01 17:45:59
Apache Commons Compress denial of service vulnerability
2023-09-14 09:30:28
talosblog
talosblog
filippoio
filippoio
Why Did the OpenSSL Punycode Vulnerability Happen
2022-11-02 17:22:29
openssl
openssl
Vulnerability in OpenSSL CVE-2022-3602
2022-11-01 00:00:00
thn
thn
Security Patch for Two New Flaws in Curl Library Arriving on October 11
2023-10-09 10:32:00
fedora
fedora
[SECURITY] Fedora 37 Update: curl-7.85.0-12.fc37
2023-10-28 01:25:37
[SECURITY] Fedora 38 Update: curl-8.0.1-5.fc38
2023-10-14 01:32:18
[SECURITY] Fedora 39 Update: curl-8.2.1-3.fc39
2023-10-16 15:27:49
ubuntu
ubuntu
curl vulnerabilities
2023-10-11 00:00:00
curl vulnerabilities
2023-10-17 00:00:00
kaspersky
kaspersky
KLA61541 Multiple vulnerabilities in Microsoft Windows
2023-10-19 00:00:00
KLA20037 Multiple vulnerabilities in Microsoft Open Source Software
2022-11-02 00:00:00
qualysblog
qualysblog
Curl 8.4.0 – Proactively Identifying Potential Vulnerable Assets
2023-10-06 00:14:06
Qualys Research Alert: OpenSSL 3.0.7 – What You Need To Know
2022-10-31 14:15:52
redos
redos
ROS-20231016-05
2023-10-16 00:00:00
oraclelinux
oraclelinux
curl security update
2023-10-18 00:00:00
curl security update
2023-11-16 00:00:00
openssl security update
2022-11-17 00:00:00
cloudfoundry
cloudfoundry
USN-6429-1: curl vulnerabilities | Cloud Foundry
2023-11-09 00:00:00
paloalto
paloalto
Impact of curl and libcurl Vulnerabilities (CVE-2023-38545, CVE-2023-38546)
2023-10-12 20:40:00
rocky
rocky
curl security update
2023-10-24 18:36:52
openssl security update
2022-11-01 18:25:07
mageia
mageia
Updated the curl packages to fix two security vulnerabilities
2023-10-14 01:56:51
cisco
cisco
cURL and libcurl Vulnerability Affecting Cisco Products: October 2023
2023-10-12 16:00:00
almalinux
almalinux
Important: curl security update
2023-10-17 00:00:00
Important: curl security update
2023-11-07 00:00:00
rapid7blog
rapid7blog
amazon
amazon
Important: curl
2023-10-10 21:19:00
ics
ics
Rockwell Automation FactoryTalk Activation
2024-01-04 12:00:00
Hitachi Energy PCU400
2023-01-19 12:00:00
slackware
slackware
[slackware-security] curl
2023-10-11 06:45:13
aix
aix
Multiple vulnerabilities in cURL libcurl affect AIX
2023-12-11 13:22:02
debian
debian
[SECURITY] [DSA 5523-1] curl security update
2023-10-11 06:58:41
gentoo
gentoo
OpenSSL: Multiple Vulnerabilities
2022-11-01 00:00:00
fortinet
fortinet
Protect
2022-10-28 00:00:00