Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.SECURITYCENTER_5_19_0_TNS_2021_08.NASL
HistorySep 03, 2021 - 12:00 a.m.

Tenable SecurityCenter < 5.19.0 Multiple Vulnerabilities (TNS-2021-14)

2021-09-0300:00:00
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21

8.8 High

AI Score

Confidence

Low

JSON

According to its self-reported version, the Tenable SecurityCenter application installed on the remote host is less than 5.19.0 and is therefore affected by multiple vulnerabilities in the following components:

  • Apache FOP
  • Underscore
  • Handlebars
  • PHP
  • sqlite

Note that successful exploitation of the most serious issues can result in arbitrary code execution.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(152986);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/11/07");

  script_cve_id(
    "CVE-2017-5661",
    "CVE-2019-11041",
    "CVE-2019-11042",
    "CVE-2019-11043",
    "CVE-2019-11044",
    "CVE-2019-11045",
    "CVE-2019-11046",
    "CVE-2019-11047",
    "CVE-2019-11048",
    "CVE-2019-11049",
    "CVE-2019-11050",
    "CVE-2019-16168",
    "CVE-2019-19645",
    "CVE-2019-19646",
    "CVE-2019-19919",
    "CVE-2020-7059",
    "CVE-2020-7060",
    "CVE-2020-7061",
    "CVE-2020-7062",
    "CVE-2020-7063",
    "CVE-2020-7064",
    "CVE-2020-7065",
    "CVE-2020-7066",
    "CVE-2020-7067",
    "CVE-2020-7068",
    "CVE-2020-7069",
    "CVE-2020-7070",
    "CVE-2020-7071",
    "CVE-2020-11655",
    "CVE-2020-11656",
    "CVE-2020-13434",
    "CVE-2020-13435",
    "CVE-2020-13630",
    "CVE-2020-13631",
    "CVE-2020-13632",
    "CVE-2020-15358",
    "CVE-2021-3449",
    "CVE-2021-3450",
    "CVE-2021-21702",
    "CVE-2021-21704",
    "CVE-2021-21705",
    "CVE-2021-23358"
  );
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/04/15");
  script_xref(name:"CEA-ID", value:"CEA-2019-0695");
  script_xref(name:"CEA-ID", value:"CEA-2021-0025");
  script_xref(name:"CEA-ID", value:"CEA-2021-0004");

  script_name(english:"Tenable SecurityCenter < 5.19.0 Multiple Vulnerabilities (TNS-2021-14)");

  script_set_attribute(attribute:"synopsis", value:
"An application installed on the remote host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"According to its self-reported version, the Tenable SecurityCenter application installed on the remote host is less 
than 5.19.0 and is therefore affected by multiple vulnerabilities in the following components: 
  - Apache FOP
  - Underscore
  - Handlebars
  - PHP
  - sqlite

Note that successful exploitation of the most serious issues can result in arbitrary code execution.");
  script_set_attribute(attribute:"see_also", value:"https://www.tenable.com/security/tns-2021-14");
  script_set_attribute(attribute:"solution", value:
"Apply the security patch referenced in the vendor advisory or upgrade to 5.19.0 or later.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:C/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-5661");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2020-11656");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'PHP-FPM Underflow RCE');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/07/22");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/09/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/09/03");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:tenable:securitycenter");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("securitycenter_installed.nbin");
  script_require_ports("installed_sw/SecurityCenter");

  exit(0);
}

include('vcf_extras.inc');

var patches = make_list('SC-202108.1');
var app_info = vcf::tenable_sc::get_app_info();

vcf::tenable_sc::check_for_patch(app_info:app_info, patches:patches);

var constraints = [
  { 'fixed_version' : '5.17.0', 'fixed_display' : '5.19.0'},
  { 'min_version' : '5.17.0', 'fixed_version' : '5.19.0', 'fixed_display' : 'Apply Patch SC-202108.1' }
];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
tenablesecuritycentercpe:/a:tenable:securitycenter

References

Related

nessus 83
freebsd_advisory 1
fedora 8
openvas 27
debian 10
osv 15
redhat 5
freebsd 1
amazon 7
gentoo 2
altlinux 10
ubuntu 6
rocky 3
almalinux 3
oraclelinux 2
mageia 4
cloudfoundry 1
suse 2
archlinux 2
ibm 4
photon 2
rosalinux 1
nessus
nessus
openSUSE 15 Security Update : php7 (openSUSE-SU-2021:2575-1)
2021-07-31 00:00:00
openSUSE 15 Security Update : php7 (openSUSE-SU-2021:2637-1)
2021-08-06 00:00:00
Tenable.sc < 5.19.0 Multiple Vulnerabilities (TNS-2021-14) (deprecated)
2021-07-22 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-20:22.sqlite
2020-08-05 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: php-7.3.13-1.fc30
2020-01-03 20:36:41
[SECURITY] Fedora 31 Update: php-7.3.13-1.fc31
2020-01-05 00:42:40
[SECURITY] Fedora 32 Update: sqlite-3.32.1-1.fc32
2020-06-02 03:54:26
openvas
openvas
Fedora Update for php FEDORA-2019-437d94e271
2020-01-08 00:00:00
Debian: Security Advisory for php7.3 (DSA-4626-1)
2020-02-19 00:00:00
Debian: Security Advisory for php7.3 (DSA-4719-1)
2020-07-09 00:00:00
debian
debian
[SECURITY] [DSA 4626-1] php7.3 security update
2020-02-17 20:39:09
[SECURITY] [DSA 4719-1] php7.3 security update
2020-07-06 21:23:48
[SECURITY] [DSA 4719-1] php7.3 security update
2020-07-06 21:23:48
osv
osv
php7.3 - security update
2020-07-06 00:00:00
php7.0 - security update
2020-07-05 00:00:00
php7.3 - security update
2020-02-17 00:00:00
redhat
redhat
(RHSA-2021:2992) Moderate: rh-php73-php security, bug fix, and enhancement update
2021-08-03 08:11:09
(RHSA-2020:5275) Moderate: rh-php73-php security, bug fix, and enhancement update
2020-12-01 11:15:07
(RHSA-2021:4213) Moderate: php:7.4 security, bug fix, and enhancement update
2021-11-09 08:42:20
freebsd
freebsd
several security issues in sqlite3
2020-05-25 00:00:00
amazon
amazon
Medium: php72, php73
2020-02-04 22:42:00
Important: php73
2024-02-01 19:33:00
Important: php72
2024-02-14 20:03:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2020-03-26 00:00:00
SQLite: Multiple vulnerabilities
2020-07-27 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package php8.1 version 7.3.13-alt1
2019-12-20 00:00:00
Security fix for the ALT Linux 10 package php8.0 version 7.3.13-alt1
2019-12-20 00:00:00
Security fix for the ALT Linux 9 package php7 version 7.3.13-alt1
2019-12-27 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2020-04-15 00:00:00
PHP vulnerabilities
2021-07-13 00:00:00
PHP vulnerabilities
2021-07-07 00:00:00
rocky
rocky
mingw packages security and bug fix update
2021-05-18 00:00:00
php:7.4 security, bug fix, and enhancement update
2021-11-09 08:42:20
php:7.3 security, bug fix, and enhancement update
2020-09-08 08:38:31
almalinux
almalinux
Moderate: mingw packages security and bug fix update
2021-05-18 06:30:39
Moderate: php:7.4 security, bug fix, and enhancement update
2021-11-09 08:42:20
Moderate: php:7.3 security, bug fix, and enhancement update
2020-09-08 08:38:31
oraclelinux
oraclelinux
php:7.4 security, bug fix, and enhancement update
2021-11-16 00:00:00
php:7.3 security, bug fix, and enhancement update
2020-09-09 00:00:00
mageia
mageia
Updated php packages fix security vulnerabilities
2019-12-25 22:08:41
Updated sqlite3 packages fix security vulnerabilities
2021-07-01 02:58:41
Updated php packages fix bugs and security vulnerabilities
2020-03-06 19:13:58
cloudfoundry
cloudfoundry
USN-4394-1: SQLite vulnerabilities | Cloud Foundry
2020-06-24 00:00:00
suse
suse
Security update for php7 (moderate)
2020-01-20 00:00:00
Security update for php7 (important)
2020-03-15 00:00:00
archlinux
archlinux
[ASA-202107-15] php: multiple issues
2021-07-06 00:00:00
[ASA-202107-16] php7: multiple issues
2021-07-06 00:00:00
ibm
ibm
Security Bulletin: IBM API Connect is impacted by multiple vulnerabilities in PHP (CVE-2019-11045, CVE-2019-11044, CVE-2019-11046)
2020-05-11 17:22:11
Security Bulletin: WML CE: WML CE: SQLite through 3.32.0 has various security issues.
2020-07-17 22:52:22
Security Bulletin: IBM API Connect is vulnerable to vulnerabilities in PHP (CVE-2020-7061, CVE-2020-7062, CVE-2020-7063)
2020-05-11 17:36:06
photon
photon
Important Photon OS Security Update - PHSA-2020-0101
2020-06-04 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0101
2020-06-03 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1975
2021-07-02 18:09:04

8.8 High

AI Score

Confidence

Low

JSON
Related for SECURITYCENTER_5_19_0_TNS_2021_08.NASL
nessus83freebsd_advisory1fedora8openvas27debian10osv15redhat5freebsd1amazon7gentoo2altlinux10ubuntu6rocky3almalinux3oraclelinux2mageia4cloudfoundry1suse2archlinux2ibm4photon2rosalinux1