CVE-2019-12491

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

19/06/2019

Last modified:

24/08/2020

Description

OnApp before 5.0.0-88, 5.5.0-93, and 6.0.0-196 allows an attacker to run arbitrary commands with root privileges on servers managed by OnApp for XEN/KVM hypervisors. To exploit the vulnerability an attacker has to have control of a single server on a given cloud (e.g. by renting one). From the source server, the attacker can craft any command and trigger the OnApp platform to execute that command with root privileges on a target server.

Impact

Vector 3.x

CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS v3.1 Severity and Metrics:

Base Score: 6.60 MEDIUM
Vector: CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): High
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): High
Integrity (I): High
Availability (A): High

Base Score 3.x

6.60

Severity 3.x

MEDIUM

Vector 2.0

AV:N/AC:M/Au:S/C:C/I:C/A:C CVSS v2.0 Severity and Metrics:

Base Score: 8.50 HIGH
Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C

Attack Vector (AV): Network
Attack Complexity (AC): Medium
Authentication (Au): Single
Confidentiality (C): Complete
Integrity (I): Complete
Availability (A): Complete

Base Score 2.0

8.50

Severity 2.0

HIGH

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:a:onapp:onapp:5.0.0:-::::::
cpe:2.3:a:onapp:onapp:5.0.0:update_79::::::
cpe:2.3:a:onapp:onapp:5.0.0:update_82::::::
cpe:2.3:a:onapp:onapp:5.0.0:update_83::::::
cpe:2.3:a:onapp:onapp:5.0.0:update_87::::::
cpe:2.3:a:onapp:onapp:5.1.0:-::::::
cpe:2.3:a:onapp:onapp:5.1.0:update_16::::::
cpe:2.3:a:onapp:onapp:5.2.0:-::::::
cpe:2.3:a:onapp:onapp:5.3.0:-::::::
cpe:2.3:a:onapp:onapp:5.3.0:update_41::::::
cpe:2.3:a:onapp:onapp:5.4.0:-::::::
cpe:2.3:a:onapp:onapp:5.4.0:update_66::::::
cpe:2.3:a:onapp:onapp:5.4.0:update_70::::::
cpe:2.3:a:onapp:onapp:5.4.0:update_72::::::
cpe:2.3:a:onapp:onapp:5.4.0:update_76::::::

To consult the complete list of CPE names with products and versions, see this page

CPE	From	Up to
cpe:2.3:a:onapp:onapp:5.0.0:-::::::
cpe:2.3:a:onapp:onapp:5.0.0:update_79::::::
cpe:2.3:a:onapp:onapp:5.0.0:update_82::::::
cpe:2.3:a:onapp:onapp:5.0.0:update_83::::::
cpe:2.3:a:onapp:onapp:5.0.0:update_87::::::
cpe:2.3:a:onapp:onapp:5.1.0:-::::::
cpe:2.3:a:onapp:onapp:5.1.0:update_16::::::
cpe:2.3:a:onapp:onapp:5.2.0:-::::::
cpe:2.3:a:onapp:onapp:5.3.0:-::::::
cpe:2.3:a:onapp:onapp:5.3.0:update_41::::::
cpe:2.3:a:onapp:onapp:5.4.0:-::::::
cpe:2.3:a:onapp:onapp:5.4.0:update_66::::::
cpe:2.3:a:onapp:onapp:5.4.0:update_70::::::
cpe:2.3:a:onapp:onapp:5.4.0:update_72::::::
cpe:2.3:a:onapp:onapp:5.4.0:update_76::::::

CVE-2019-12491

Description

Impact

Vulnerable products and versions

References to Advisories, Solutions, and Tools