Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2013-1210.NASL
HistoryNov 08, 2014 - 12:00 a.m.

RHEL 6 : rhevm (RHSA-2013:1210)

2014-11-0800:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

49.1%

JSON

Updated rhevm packages that fix one security issue and various bugs are now available.

The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

The Red Hat Enterprise Virtualization Manager is a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a comprehensive range of features including search capabilities, resource management, live migrations, and virtual infrastructure provisioning.

The Manager is a JBoss Application Server application that provides several interfaces through which the virtual environment can be accessed and interacted with, including an Administration Portal, a User Portal, and a Representational State Transfer (REST) Application Programming Interface (API).

A reflected cross-site scripting (XSS) flaw was found in Red Hat Enterprise Virtualization Manager. An attacker could construct a carefully-crafted URL, which once visited by an unsuspecting user, could cause the user’s web browser to execute malicious script in the context of the Red Hat Enterprise Virtualization Manager domain.
(CVE-2013-4181)

Red Hat would like to thank Kayhan KAYIHAN of Endersys A.S. for reporting this issue.

A list of the bugs fixed in this update is available in the Technical Notes document :

https://access.redhat.com/site/documentation/en-US/ Red_Hat_Enterprise_Virtualization/3.2/html/Technical_Notes/ chap-RHSA-2013-1210.html

All Red Hat Enterprise Virtualization Manager users are advised to upgrade to these updated packages, which resolve these issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2013:1210. The text 
# itself is copyright (C) Red Hat, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(78971);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2013-4181");
  script_bugtraq_id(73648);
  script_xref(name:"RHSA", value:"2013:1210");

  script_name(english:"RHEL 6 : rhevm (RHSA-2013:1210)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated rhevm packages that fix one security issue and various bugs
are now available.

The Red Hat Security Response Team has rated this update as having
moderate security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from
the CVE link in the References section.

The Red Hat Enterprise Virtualization Manager is a centralized
management platform that allows system administrators to view and
manage virtual machines. The Manager provides a comprehensive range of
features including search capabilities, resource management, live
migrations, and virtual infrastructure provisioning.

The Manager is a JBoss Application Server application that provides
several interfaces through which the virtual environment can be
accessed and interacted with, including an Administration Portal, a
User Portal, and a Representational State Transfer (REST) Application
Programming Interface (API).

A reflected cross-site scripting (XSS) flaw was found in Red Hat
Enterprise Virtualization Manager. An attacker could construct a
carefully-crafted URL, which once visited by an unsuspecting user,
could cause the user's web browser to execute malicious script in the
context of the Red Hat Enterprise Virtualization Manager domain.
(CVE-2013-4181)

Red Hat would like to thank Kayhan KAYIHAN of Endersys A.S. for
reporting this issue.

A list of the bugs fixed in this update is available in the Technical
Notes document :

https://access.redhat.com/site/documentation/en-US/
Red_Hat_Enterprise_Virtualization/3.2/html/Technical_Notes/
chap-RHSA-2013-1210.html

All Red Hat Enterprise Virtualization Manager users are advised to
upgrade to these updated packages, which resolve these issues."
  );
  # https://access.redhat.com/site/documentation/en-US/
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/documentation/en-US/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2013:1210"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2013-4181"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-backend");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-config");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-dbscripts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-genericapi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-notification-service");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-restapi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-setup");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-setup-plugin-allinone");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-tools-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-userportal");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhevm-webadmin-portal");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/09/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/09/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/11/08");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 6.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2013:1210";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_exists(rpm:"rhevm-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-backend-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-backend-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-config-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-config-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-dbscripts-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-dbscripts-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-genericapi-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-genericapi-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-notification-service-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-notification-service-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-restapi-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-restapi-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-setup-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-setup-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-setup-plugin-allinone-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-setup-plugin-allinone-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-tools-common-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-tools-common-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-userportal-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-userportal-3.2.3-0.42.el6ev")) flag++;
  if (rpm_exists(rpm:"rhevm-webadmin-portal-3.2.", release:"RHEL6") && rpm_check(release:"RHEL6", reference:"rhevm-webadmin-portal-3.2.3-0.42.el6ev")) flag++;

  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "rhevm / rhevm-backend / rhevm-config / rhevm-dbscripts / etc");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxrhevmp-cpe:/a:redhat:enterprise_linux:rhevm
redhatenterprise_linuxrhevm-backendp-cpe:/a:redhat:enterprise_linux:rhevm-backend
redhatenterprise_linuxrhevm-configp-cpe:/a:redhat:enterprise_linux:rhevm-config
redhatenterprise_linuxrhevm-dbscriptsp-cpe:/a:redhat:enterprise_linux:rhevm-dbscripts
redhatenterprise_linuxrhevm-genericapip-cpe:/a:redhat:enterprise_linux:rhevm-genericapi
redhatenterprise_linuxrhevm-notification-servicep-cpe:/a:redhat:enterprise_linux:rhevm-notification-service
redhatenterprise_linuxrhevm-restapip-cpe:/a:redhat:enterprise_linux:rhevm-restapi
redhatenterprise_linuxrhevm-setupp-cpe:/a:redhat:enterprise_linux:rhevm-setup
redhatenterprise_linuxrhevm-setup-plugin-allinonep-cpe:/a:redhat:enterprise_linux:rhevm-setup-plugin-allinone
redhatenterprise_linuxrhevm-tools-commonp-cpe:/a:redhat:enterprise_linux:rhevm-tools-common
Rows per page:
1-10 of 131

Related

cve 1
redhat 1
prion 1
cvelist 1
nvd 1
cve
cve
CVE-2013-4181
2013-09-16 19:14:38
redhat
redhat
(RHSA-2013:1210) Moderate: rhevm security and bug fix update
2013-09-10 00:00:00
prion
prion
Cross site scripting
2013-09-16 19:14:00
cvelist
cvelist
CVE-2013-4181
2013-09-16 19:00:00
nvd
nvd
CVE-2013-4181
2013-09-16 19:14:38

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

49.1%

JSON
Related for REDHAT-RHSA-2013-1210.NASL
cve1redhat1prion1cvelist1nvd1