Details of VAR-201802-0173

ID

VAR-201802-0173

CVE

CVE-2017-5796

TITLE

HP 2620 Series Network Switches Cross-Site Request Forgery Vulnerability

Trust: 1.2

sources: CNVD: CNVD-2017-04315 // CNNVD: CNNVD-201703-548

DESCRIPTION

A Remote Cross Site Request Forgery (CSRF) vulnerability in HPE 2620 Series Network Switches version RA.15.05.0006 was found. The HP2620 Series NetworkSwitches is a 2620 series switch from Hewlett Packard (HP). This series of switches supports IPV4/IPv6 static and RIP routing. A cross-site request forgery vulnerability exists in HP2620SeriesNetworkSwitches due to a program failing to properly validate HTTP requests. A remote attacker could exploit this vulnerability to perform unauthorized operations. Other attacks are also possible. References: - CVE-2017-5796 SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. - HP MSR2000 Router Series RA.15.05.0006 BACKGROUND CVSS Base Metrics ================= Reference, CVSS V3 Score/Vector, CVSS V2 Score/Vector CVE-2017-5796 9.6 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C) Information on CVSS is documented in HPE Customer Notice HPSN-2008-002 here: https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c01345499 RESOLUTION HPE has made the following software updates and mitigation information to resolve the vulnerability in HPE 2620 Series Network Switches: * Install RA.15.15.0014 or a subsequent version. **Note:** Please contact HPE Technical Support if any assistance is needed acquiring the software updates HISTORY Version:1 (rev.1) - 10 March 2017 Initial release Third Party Security Patches: Third party security patches that are to be installed on systems running Hewlett Packard Enterprise (HPE) software products should be applied in accordance with the customer's patch management policy. Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HPE Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hpe.com. Report: To report a potential security vulnerability for any HPE supported product: Web form: https://www.hpe.com/info/report-security-vulnerability Email: security-alert@hpe.com Subscribe: To initiate a subscription to receive future HPE Security Bulletin alerts via Email: http://www.hpe.com/support/Subscriber_Choice Security Bulletin Archive: A list of recently released Security Bulletins is available here: http://www.hpe.com/support/Security_Bulletin_Archive Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB. 3C = 3COM 3P = 3rd Party Software GN = HPE General Software HF = HPE Hardware and Firmware MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PV = ProCurve ST = Storage Software UX = HP-UX Copyright 2016 Hewlett Packard Enterprise Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett Packard Enterprise and the names of Hewlett Packard Enterprise products referenced herein are trademarks of Hewlett Packard Enterprise in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJYwvKVAAoJELXhAxt7SZaiEN4H/jo7Yam0hzb8p5LC8Ug88Tl/ aq+9WnL/ABCM8MWZG22fel7EPJaaudseVTCnBOshBcBhSX79xbTnzWUguOAPstaY VIZ8w+rNNm0d8Z6gNF/prLahHGbkLLczvBiOm0YHk7Z7PdmvV7CUpY3go3FKcdbu kgvZGDDvoztyoVeuvbTn7YONALQevJSvu4SvCjHFWyVTJNs6cwBBHwVp4uY/vPfZ PqwE1+scT10Y3NeQyv1H+LyyV5px4HK37PTwJ8NoAx0jPHDCqfuST6HXfWhJvVeb AejMcDPWDxvhwn7H6mkG4Q7EJNMdE8ZawAUcoVFCzGl70AxTyWr8cZaykA8vS2s= =nJ3A -----END PGP SIGNATURE-----

Trust: 2.52

sources: NVD: CVE-2017-5796 // JVNDB: JVNDB-2017-012644 // CNVD: CNVD-2017-04315 // BID: 96813 // PACKETSTORM: 141580

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-04315

AFFECTED PRODUCTS

vendor:	hp	model:	j9625a	scope:	lt	version:	ra.15.15.0014	Trust: 1.0
vendor:	hp	model:	j9624a	scope:	lt	version:	ra.15.15.0014	Trust: 1.0
vendor:	hp	model:	j9623a	scope:	lt	version:	ra.15.15.0014	Trust: 1.0
vendor:	hp	model:	j9626a	scope:	lt	version:	ra.15.15.0014	Trust: 1.0
vendor:	hp	model:	j9627a	scope:	lt	version:	ra.15.15.0014	Trust: 1.0
vendor:	hp	model:	series network switches	scope:	eq	version:	26200	Trust: 0.9
vendor:	hp	model:	msr2000 ra.15.05.0006	scope:	-	version:	-	Trust: 0.9
vendor:	hewlett packard	model:	j9623a	scope:	eq	version:	ra.15.05.0006	Trust: 0.8
vendor:	hewlett packard	model:	j9624a	scope:	eq	version:	ra.15.05.0006	Trust: 0.8
vendor:	hewlett packard	model:	j9625a	scope:	eq	version:	ra.15.05.0006	Trust: 0.8
vendor:	hewlett packard	model:	j9626a	scope:	eq	version:	ra.15.05.0006	Trust: 0.8
vendor:	hewlett packard	model:	j9627a	scope:	eq	version:	ra.15.05.0006	Trust: 0.8
vendor:	hp	model:	msr2000 ra.15.15.0014	scope:	ne	version:	-	Trust: 0.3

sources: CNVD: CNVD-2017-04315 // BID: 96813 // JVNDB: JVNDB-2017-012644 // NVD: CVE-2017-5796

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-5796
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-5796
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2017-04315
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201703-548
value:	CRITICAL
Trust: 0.6

nvd@nist.gov:	CVE-2017-5796
severity:	HIGH
baseScore:	9.3
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.6
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-04315
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2017-5796
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-04315 // JVNDB: JVNDB-2017-012644 // CNNVD: CNNVD-201703-548 // NVD: CVE-2017-5796

PROBLEMTYPE DATA

problemtype:

CWE-352

Trust: 1.8

sources: JVNDB: JVNDB-2017-012644 // NVD: CVE-2017-5796

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201703-548

TYPE

cross-site request forgery

Trust: 0.6

sources: CNNVD: CNNVD-201703-548

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-012644

PATCH

title:	HPESBHF03711	url:	https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03711en_us	Trust: 0.8
title:	Patch for HP2620SeriesNetworkSwitches Cross-site Request Forgery Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/91625	Trust: 0.6
title:	HP 2620 Series Network Switches Fixes for cross-site request forgery vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=68391	Trust: 0.6

sources: CNVD: CNVD-2017-04315 // JVNDB: JVNDB-2017-012644 // CNNVD: CNNVD-201703-548

EXTERNAL IDS

db:	NVD	id:	CVE-2017-5796	Trust: 3.4
db:	BID	id:	96813	Trust: 2.5
db:	JVNDB	id:	JVNDB-2017-012644	Trust: 0.8
db:	CNVD	id:	CNVD-2017-04315	Trust: 0.6
db:	CNNVD	id:	CNNVD-201703-548	Trust: 0.6
db:	PACKETSTORM	id:	141580	Trust: 0.1

sources: CNVD: CNVD-2017-04315 // BID: 96813 // JVNDB: JVNDB-2017-012644 // PACKETSTORM: 141580 // CNNVD: CNNVD-201703-548 // NVD: CVE-2017-5796

REFERENCES

url:	http://www.securityfocus.com/bid/96813	Trust: 2.2
url:	https://support.hpe.com/hpsc/doc/public/display?docid=emr_na-hpesbhf03711en_us	Trust: 1.6
url:	https://nvd.nist.gov/vuln/detail/cve-2017-5796	Trust: 0.9
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5796	Trust: 0.8
url:	http://www.hp.com/	Trust: 0.3
url:	https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-hpesbhf03711en_us	Trust: 0.3
url:	http://www.hpe.com/support/security_bulletin_archive	Trust: 0.1
url:	https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-hpesbhf03711en_us	Trust: 0.1
url:	https://www.hpe.com/info/report-security-vulnerability	Trust: 0.1
url:	https://h20564.www2.hpe.com/hpsc/doc/public/display?docid=emr_na-c01345499	Trust: 0.1
url:	http://www.hpe.com/support/subscriber_choice	Trust: 0.1

sources: CNVD: CNVD-2017-04315 // BID: 96813 // JVNDB: JVNDB-2017-012644 // PACKETSTORM: 141580 // CNNVD: CNNVD-201703-548 // NVD: CVE-2017-5796

CREDITS

The vendor reported this issue.

Trust: 0.3

sources: BID: 96813

SOURCES

db:	CNVD	id:	CNVD-2017-04315
db:	BID	id:	96813
db:	JVNDB	id:	JVNDB-2017-012644
db:	PACKETSTORM	id:	141580
db:	CNNVD	id:	CNNVD-201703-548
db:	NVD	id:	CVE-2017-5796

LAST UPDATE DATE

2024-11-23T22:30:30.694000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-04315	date:	2017-04-12T00:00:00
db:	BID	id:	96813	date:	2017-03-16T04:01:00
db:	JVNDB	id:	JVNDB-2017-012644	date:	2018-03-29T00:00:00
db:	CNNVD	id:	CNNVD-201703-548	date:	2017-03-14T00:00:00
db:	NVD	id:	CVE-2017-5796	date:	2024-11-21T03:28:23.763

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-04315	date:	2017-04-12T00:00:00
db:	BID	id:	96813	date:	2017-03-09T00:00:00
db:	JVNDB	id:	JVNDB-2017-012644	date:	2018-03-29T00:00:00
db:	PACKETSTORM	id:	141580	date:	2017-03-11T11:12:00
db:	CNNVD	id:	CNNVD-201703-548	date:	2017-03-14T00:00:00
db:	NVD	id:	CVE-2017-5796	date:	2018-02-15T22:29:05.933