Default configuration

2020-04-0121:15:00

PRIOn knowledge base

www.prio-n.com

5.3 Medium

CVSS3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

5.8 Medium

AI Score

Confidence

High

2.9 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:M/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

26.0%

JSON

Apache CXF has the ability to integrate with JMX by registering an InstrumentationManager extension with the CXF bus. If the ‘createMBServerConnectorFactory‘ property of the default InstrumentationManagerImpl is not disabled, then it is vulnerable to a man-in-the-middle (MITM) style attack. An attacker on the same host can connect to the registry and rebind the entry to another server, thus acting as a proxy to the original. They are then able to gain access to all of the information that is sent and received over JMX.

CPENameOperatorVersion
cxfge3.3.0
cxflt3.3.6
cxflt3.2.13
communications_diameter_signaling_routerge8.0.0
communications_diameter_signaling_routerle8.2.2
communications_element_managerge8.2.0
communications_element_managerle8.2.2
communications_element_managerge8.2.0
communications_element_managerle8.2.2
communications_session_report_managerge8.2.0

Name	Operator	Version
cxf	ge	3.3.0
cxf	lt	3.3.6
cxf	lt	3.2.13
communications_diameter_signaling_router	ge	8.0.0
communications_diameter_signaling_router	le	8.2.2
communications_element_manager	ge	8.2.0
communications_element_manager	le	8.2.2
communications_element_manager	ge	8.2.0
communications_element_manager	le	8.2.2
communications_session_report_manager	ge	8.2.0