CVE-2018-11076

Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0 and 7.4.1 and Dell EMC Integrated Data Protection Appliance (IDPA) 2.0 are affected by an information exposure vulnerability. Avamar Java management console's SSL/TLS private key may be leaked in the Avamar Java management client package. The private key could potentially be used by an unauthenticated attacker on the same data-link layer to initiate a MITM attack on management console users.

CVSS v3 6.5 MEDIUM
CVSS v2.0 3.3 LOW

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector : AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability : 2.8 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

3.3^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:A/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 6.5 / Impact : 2.9

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.securityfocus.com/bid/105972	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1042153	Third Party Advisory VDB Entry
https://seclists.org/fulldisclosure/2018/Nov/50	Mailing List Third Party Advisory
https://www.vmware.com/security/advisories/VMSA-2018-0029.html	Patch Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:dell:emc_avamar:7.2.0:::::::*
	cpe:2.3:a:dell:emc_avamar:7.2.1:::::::*
	cpe:2.3:a:dell:emc_avamar:7.3.0:::::::*
	cpe:2.3:a:dell:emc_avamar:7.3.1:::::::*
	cpe:2.3:a:dell:emc_avamar:7.4.0:::::::*
	cpe:2.3:a:dell:emc_avamar:7.4.1:::::::*
	cpe:2.3:a:dell:emc_integrated_data_protection_appliance:2.0:::::::*

Configuration 2 (hide)

OR	cpe:2.3:a:vmware:vsphere_data_protection:6.0.0:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.0.1:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.0.2:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.0.3:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.0.4:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.0.5:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.0.6:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.0.7:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.0.8:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.0:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.1:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.2:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.3:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.4:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.5:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.6:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.7:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.8:::::::*
	cpe:2.3:a:vmware:vsphere_data_protection:6.1.9:::::::*

History

No history.

Information

Published : 2018-11-26 20:29

Updated : 2020-08-24 17:37

NVD link : CVE-2018-11076

Mitre link : CVE-2018-11076

CVE.ORG link : CVE-2018-11076

JSON object : View

Products Affected

vmware

vsphere_data_protection

dell

emc_avamar
emc_integrated_data_protection_appliance

CWE

NVD-CWE-noinfo

{"id": "CVE-2018-11076", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.3, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.5, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2018-11-26T20:29:00.357", "references": [{"url": "http://www.securityfocus.com/bid/105972", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "http://www.securitytracker.com/id/1042153", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "https://seclists.org/fulldisclosure/2018/Nov/50", "tags": ["Mailing List", "Third Party Advisory"], "source": "security_alert@emc.com"}, {"url": "https://www.vmware.com/security/advisories/VMSA-2018-0029.html", "tags": ["Patch", "Third Party Advisory"], "source": "security_alert@emc.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0 and 7.4.1 and Dell EMC Integrated Data Protection Appliance (IDPA) 2.0 are affected by an information exposure vulnerability. Avamar Java management console's SSL/TLS private key may be leaked in the Avamar Java management client package. The private key could potentially be used by an unauthenticated attacker on the same data-link layer to initiate a MITM attack on management console users."}, {"lang": "es", "value": "Las versiones 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0 y 7.4.1 de Dell EMC Avamar Server y la 2.0 de Dell EMC Integrated Data Protection Appliance (IDPA) se ven afectadas por una vulnerabilidad de exposici\u00f3n de informaci\u00f3n. La clave privada \"SSL/TLS\" de la consola de gesti\u00f3n de Avamar Java podr\u00eda divulgarse en el paquete del cliente de gesti\u00f3n del mismo. Esta clave privada podr\u00eda ser usada por un atacante no autenticado en la misma capa data-link para iniciar un ataque Man-in-the-Middle (MitM) contra los usuarios de la consola de gesti\u00f3n."}], "lastModified": "2020-08-24T17:37:01.140", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:dell:emc_avamar:7.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D9FD281-DB86-4D2D-BC19-CE2453709121"}, {"criteria": "cpe:2.3:a:dell:emc_avamar:7.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA20E0E8-6812-4416-93AA-E59B693FCFC6"}, {"criteria": "cpe:2.3:a:dell:emc_avamar:7.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "066595A8-C9EC-4ED3-AE76-A778F226B61E"}, {"criteria": "cpe:2.3:a:dell:emc_avamar:7.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DBA338A4-140B-4C5E-9D58-C17163EBE629"}, {"criteria": "cpe:2.3:a:dell:emc_avamar:7.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "490F94D4-CD84-418F-BCF3-A5FF2F98BEAA"}, {"criteria": "cpe:2.3:a:dell:emc_avamar:7.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81FAAFDD-6A1B-44DE-92CB-B60D24397FED"}, {"criteria": "cpe:2.3:a:dell:emc_integrated_data_protection_appliance:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C4D195D-C047-42E9-9885-0464642EC6EC"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBA48F5F-3B72-427E-9C9A-E5C3EC03A5F8"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5AF32F55-AE25-4F52-B043-1C2623344F1A"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8FEBFF6-CEF2-4A8E-BA29-3F383D6DF436"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BEC123DA-FBC3-4075-B4C0-A5295A6965A1"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D8E9053-F846-48A5-93D7-35D0665D4038"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "561D7F05-3074-44E8-A9C9-11CF1B8FFF49"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF81991D-6B69-4849-86B3-3A35CCB4B4E5"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9DE2E06-EAF2-401B-A775-44EF23D17691"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12DE5F53-7FEC-4EF0-9841-C8493AE25E0B"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D7E39A9-BE37-4848-BAD2-7F97D04F0D7C"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A908399-8C17-46B6-B554-77F588C2BF42"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC8AFC55-915D-46AC-80DA-E100F4CFFD64"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2B9A334-69EB-4E88-A446-18A1B0C669B2"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D94A218-4CA0-46EA-BA44-24E90037222D"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC527586-5680-4626-95D4-28EF84439DDA"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1476A3A-9BD3-4DF5-8290-CC32AFFA122C"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F946694-A52E-46C9-A4C7-663B5EE01138"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D006B093-4DEB-4911-995C-744B3189D46D"}, {"criteria": "cpe:2.3:a:vmware:vsphere_data_protection:6.1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "664DCBF4-0C41-4B68-B983-4E16933BA269"}], "operator": "OR"}]}], "sourceIdentifier": "security_alert@emc.com"}

6.5 /10

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

3.3 /10

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2018-11076

6.5^/10

3.3^/10

Attach tags to `CVE-2018-11076`