Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2019-0972.NASL
HistoryMay 07, 2019 - 12:00 a.m.

RHEL 8 : openwsman (RHSA-2019:0972)

2019-05-0700:00:00
This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
JSON

An update for openwsman is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Openwsman is a project intended to provide an open source implementation of the Web Services Management specification (WS-Management) and to expose system management information on the Linux operating system using the WS-Management protocol. WS-Management is based on a suite of web services specifications and usage requirements that cover all system management aspects.

Security Fix(es) :

  • openwsman: Disclosure of arbitrary files outside of the registered URIs (CVE-2019-3816)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2019:0972. The text 
# itself is copyright (C) Red Hat, Inc.
#

include("compat.inc");

if (description)
{
  script_id(124665);
  script_version("1.6");
  script_cvs_date("Date: 2020/01/30");

  script_cve_id("CVE-2019-3816");
  script_xref(name:"RHSA", value:"2019:0972");

  script_name(english:"RHEL 8 : openwsman (RHSA-2019:0972)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"An update for openwsman is now available for Red Hat Enterprise Linux
8.

Red Hat Product Security has rated this update as having a security
impact of Important. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.

Openwsman is a project intended to provide an open source
implementation of the Web Services Management specification
(WS-Management) and to expose system management information on the
Linux operating system using the WS-Management protocol. WS-Management
is based on a suite of web services specifications and usage
requirements that cover all system management aspects.

Security Fix(es) :

* openwsman: Disclosure of arbitrary files outside of the registered
URIs (CVE-2019-3816)

For more details about the security issue(s), including the impact, a
CVSS score, acknowledgments, and other related information, refer to
the CVE page(s) listed in the References section."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2019:0972"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2019-3816"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libwsman-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libwsman1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libwsman1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:openwsman-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:openwsman-client-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:openwsman-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:openwsman-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:openwsman-perl-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:openwsman-python3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:openwsman-python3-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:openwsman-server");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:openwsman-server-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rubygem-openwsman-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:8");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:8.0");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/03/14");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/05/07");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/05/07");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^8([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 8.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2019:0972";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_check(release:"RHEL8", sp:"0", cpu:"aarch64", reference:"libwsman-devel-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"i686", reference:"libwsman-devel-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"s390x", reference:"libwsman-devel-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"x86_64", reference:"libwsman-devel-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"libwsman1-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"libwsman1-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"libwsman1-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"aarch64", reference:"libwsman1-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"libwsman1-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"libwsman1-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"libwsman1-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"openwsman-client-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"openwsman-client-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"openwsman-client-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"aarch64", reference:"openwsman-client-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"openwsman-client-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"openwsman-client-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"openwsman-client-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"aarch64", reference:"openwsman-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"openwsman-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"openwsman-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"openwsman-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"aarch64", reference:"openwsman-debugsource-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"openwsman-debugsource-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"openwsman-debugsource-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"openwsman-debugsource-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"aarch64", reference:"openwsman-perl-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"openwsman-perl-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"openwsman-perl-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"openwsman-perl-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"openwsman-python3-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"openwsman-python3-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"aarch64", reference:"openwsman-python3-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"openwsman-python3-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"openwsman-python3-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"openwsman-python3-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"openwsman-server-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"openwsman-server-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"openwsman-server-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"aarch64", reference:"openwsman-server-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"openwsman-server-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"openwsman-server-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"openwsman-server-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", sp:"0", cpu:"aarch64", reference:"rubygem-openwsman-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"i686", reference:"rubygem-openwsman-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"s390x", reference:"rubygem-openwsman-debuginfo-2.6.5-5.el8")) flag++;

  if (rpm_check(release:"RHEL8", cpu:"x86_64", reference:"rubygem-openwsman-debuginfo-2.6.5-5.el8")) flag++;


  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libwsman-devel / libwsman1 / libwsman1-debuginfo / openwsman-client / etc");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxlibwsman-develp-cpe:/a:redhat:enterprise_linux:libwsman-devel
redhatenterprise_linuxlibwsman1p-cpe:/a:redhat:enterprise_linux:libwsman1
redhatenterprise_linuxlibwsman1-debuginfop-cpe:/a:redhat:enterprise_linux:libwsman1-debuginfo
redhatenterprise_linuxopenwsman-clientp-cpe:/a:redhat:enterprise_linux:openwsman-client
redhatenterprise_linuxopenwsman-client-debuginfop-cpe:/a:redhat:enterprise_linux:openwsman-client-debuginfo
redhatenterprise_linuxopenwsman-debuginfop-cpe:/a:redhat:enterprise_linux:openwsman-debuginfo
redhatenterprise_linuxopenwsman-debugsourcep-cpe:/a:redhat:enterprise_linux:openwsman-debugsource
redhatenterprise_linuxopenwsman-perl-debuginfop-cpe:/a:redhat:enterprise_linux:openwsman-perl-debuginfo
redhatenterprise_linuxopenwsman-python3p-cpe:/a:redhat:enterprise_linux:openwsman-python3
redhatenterprise_linuxopenwsman-python3-debuginfop-cpe:/a:redhat:enterprise_linux:openwsman-python3-debuginfo
Rows per page:
1-10 of 151

Related

veracode 1
nessus 19
amazon 1
cbl_mariner 2
cve 1
oraclelinux 2
ibm 1
redhat 2
prion 1
openvas 8
centos 1
osv 1
redhatcve 1
ubuntucve 1
fedora 3
suse 2
veracode
veracode
Information Disclosure
2019-05-16 03:58:46
nessus
nessus
Amazon Linux 2 : openwsman (ALAS-2019-1196)
2019-04-26 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : openwsman Vulnerability (NS-SA-2019-0061)
2019-08-12 00:00:00
CBL Mariner 2.0 Security Update: openwsman (CVE-2019-3816)
2024-04-04 00:00:00
amazon
amazon
Important: openwsman
2019-04-25 16:38:00
cbl_mariner
cbl_mariner
CVE-2019-3816 affecting package openwsman 2.6.8-13
2022-10-21 20:52:27
CVE-2019-3816 affecting package openwsman 2.6.8-13
2024-04-03 00:40:51
cve
cve
CVE-2019-3816
2019-03-14 22:29:00
oraclelinux
oraclelinux
openwsman security update
2019-03-25 00:00:00
openwsman security update
2019-07-30 00:00:00
ibm
ibm
Security Bulletin: A vulnerability in OpenWSMAN affects PowerKVM
2019-05-17 16:10:01
redhat
redhat
(RHSA-2019:0972) Important: openwsman security update
2019-05-07 03:38:45
(RHSA-2019:0638) Important: openwsman security update
2019-03-25 08:46:57
prion
prion
Design/Logic Flaw
2019-03-14 22:29:00
openvas
openvas
CentOS Update for libwsman1 CESA-2019:0638 centos7
2019-05-01 00:00:00
Huawei EulerOS: Security Advisory for openwsman (EulerOS-SA-2019-1329)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for openwsman (EulerOS-SA-2019-1331)
2020-01-23 00:00:00
centos
centos
libwsman, libwsman1, openwsman security update
2019-04-30 13:16:56
osv
osv
CVE-2019-3816
2019-03-14 22:29:01
redhatcve
redhatcve
CVE-2019-3816
2019-03-12 10:49:43
ubuntucve
ubuntucve
CVE-2019-3816
2019-03-14 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: openwsman-2.6.8-5.fc30
2019-03-29 19:36:19
[SECURITY] Fedora 29 Update: openwsman-2.6.5-9.fc29
2019-03-29 02:59:42
[SECURITY] Fedora 28 Update: openwsman-2.6.5-4.fc28
2019-03-29 02:04:56
suse
suse
Security update for openwsman (important)
2019-04-16 00:00:00
Security update for openwsman (important)
2019-04-02 00:00:00
JSON
Related for REDHAT-RHSA-2019-0972.NASL
veracode1nessus19amazon1cbl_mariner2cve1oraclelinux2ibm1redhat2prion1openvas8centos1osv1redhatcve1ubuntucve1fedora3suse2