CVE-2018-2449

SAP SRM MDM Catalog versions 3.73, 7.31, 7.32 in (SAP NetWeaver 7.3) - import functionality does not perform authentication checks for valid repository user. This is an unauthenticated functionality that you can use on windows machines to do SMB relaying.

CVSS v3 8.6 HIGH
CVSS v2.0 7.5 HIGH

8.6^/10

CVSS v3 : HIGH

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Exploitability : 3.9 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.securityfocus.com/bid/105079	Third Party Advisory VDB Entry
https://launchpad.support.sap.com/#/notes/2655250	Permissions Required Vendor Advisory
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499352742	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:sap:supplier_relationship_management_mdm_catalog:3.73:::::::*
	cpe:2.3:a:sap:supplier_relationship_management_mdm_catalog:7.31:::::::*
	cpe:2.3:a:sap:supplier_relationship_management_mdm_catalog:7.32:::::::*

History

No history.

Information

Published : 2018-08-14 16:29

Updated : 2018-10-11 16:49

NVD link : CVE-2018-2449

Mitre link : CVE-2018-2449

CVE.ORG link : CVE-2018-2449

JSON object : View

Products Affected

sap

supplier_relationship_management_mdm_catalog

CWE

CWE-287

Improper Authentication

{"id": "CVE-2018-2449", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 4.7, "exploitabilityScore": 3.9}]}, "published": "2018-08-14T16:29:01.427", "references": [{"url": "http://www.securityfocus.com/bid/105079", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cna@sap.com"}, {"url": "https://launchpad.support.sap.com/#/notes/2655250", "tags": ["Permissions Required", "Vendor Advisory"], "source": "cna@sap.com"}, {"url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499352742", "tags": ["Vendor Advisory"], "source": "cna@sap.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}], "descriptions": [{"lang": "en", "value": "SAP SRM MDM Catalog versions 3.73, 7.31, 7.32 in (SAP NetWeaver 7.3) - import functionality does not perform authentication checks for valid repository user. This is an unauthenticated functionality that you can use on windows machines to do SMB relaying."}, {"lang": "es", "value": "SAP SRM MDM Catalog en versiones 3.73, 7.31 y 7.32 en (SAP NetWeaver 7.3) - la funcionalidad de importaci\u00f3n no realiza comprobaciones de autenticaci\u00f3n para los usuarios v\u00e1lidos del repositorio. Esta es una funcionalidad no autenticada que puede emplearse en equipos Windows para realizar retransmisiones SMB."}], "lastModified": "2018-10-11T16:49:37.997", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sap:supplier_relationship_management_mdm_catalog:3.73:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBD1BB61-AB0A-4903-A018-A5714F6159F0"}, {"criteria": "cpe:2.3:a:sap:supplier_relationship_management_mdm_catalog:7.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65577EB5-450E-4DF1-B2D9-B3BC207F4430"}, {"criteria": "cpe:2.3:a:sap:supplier_relationship_management_mdm_catalog:7.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D45193F-F7D5-45B7-95F7-A12063586BE3"}], "operator": "OR"}]}], "sourceIdentifier": "cna@sap.com"}