Details of VAR-201811-0180

ID

VAR-201811-0180

CVE

CVE-2018-15444

TITLE

Cisco Energy Management Suite Software In XML External entity vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2018-013967

DESCRIPTION

A vulnerability in the web-based user interface of Cisco Energy Management Suite Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML External Entity (XXE) entries when parsing certain XML files. An attacker could exploit this vulnerability by convincing a user of an affected system to import a crafted XML file with malicious entries, which could allow the attacker to read and write files within the affected application. This issue is tracked by Cisco Bug ID CSCvm38505. This product is mainly used to manage energy management of network equipment, etc

Trust: 1.98

sources: NVD: CVE-2018-15444 // JVNDB: JVNDB-2018-013967 // BID: 105860 // VULHUB: VHN-125704

AFFECTED PRODUCTS

vendor:	cisco	model:	energy management suite software	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	energy management suite software	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	energy management suite	scope:	eq	version:	5.2	Trust: 0.3
vendor:	cisco	model:	energy management suite	scope:	eq	version:	4.4	Trust: 0.3

sources: BID: 105860 // JVNDB: JVNDB-2018-013967 // NVD: CVE-2018-15444

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-15444
value:	HIGH
Trust: 1.0
ykramarz@cisco.com:	CVE-2018-15444
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2018-15444
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201811-191
value:	HIGH
Trust: 0.6
VULHUB:	VHN-125704
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2018-15444
severity:	MEDIUM
baseScore:	4.9
vectorString:	AV:N/AC:M/AU:S/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	6.8
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-125704
severity:	MEDIUM
baseScore:	4.9
vectorString:	AV:N/AC:M/AU:S/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	6.8
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2018-15444
baseSeverity:	HIGH
baseScore:	7.3
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	2.1
impactScore:	5.2
version:	3.0
Trust: 1.8
ykramarz@cisco.com:	CVE-2018-15444
baseSeverity:	MEDIUM
baseScore:	6.3
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	2.1
impactScore:	4.2
version:	3.0
Trust: 1.0

sources: VULHUB: VHN-125704 // JVNDB: JVNDB-2018-013967 // CNNVD: CNNVD-201811-191 // NVD: CVE-2018-15444 // NVD: CVE-2018-15444

PROBLEMTYPE DATA

problemtype:

CWE-611

Trust: 1.9

sources: VULHUB: VHN-125704 // JVNDB: JVNDB-2018-013967 // NVD: CVE-2018-15444

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201811-191

TYPE

code problem

Trust: 0.6

sources: CNNVD: CNNVD-201811-191

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-013967

PATCH

title:	cisco-sa-20181107-ems-xml-xxe	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-ems-xml-xxe	Trust: 0.8
title:	Cisco Energy Management Suite Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=86662	Trust: 0.6

sources: JVNDB: JVNDB-2018-013967 // CNNVD: CNNVD-201811-191

EXTERNAL IDS

db:	NVD	id:	CVE-2018-15444	Trust: 2.8
db:	TENABLE	id:	TRA-2018-36	Trust: 2.5
db:	BID	id:	105860	Trust: 2.0
db:	JVNDB	id:	JVNDB-2018-013967	Trust: 0.8
db:	CNNVD	id:	CNNVD-201811-191	Trust: 0.7
db:	VULHUB	id:	VHN-125704	Trust: 0.1

sources: VULHUB: VHN-125704 // BID: 105860 // JVNDB: JVNDB-2018-013967 // CNNVD: CNNVD-201811-191 // NVD: CVE-2018-15444

REFERENCES

url:	https://www.tenable.com/security/research/tra-2018-36	Trust: 2.5
url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20181107-ems-xml-xxe	Trust: 2.0
url:	http://www.securityfocus.com/bid/105860	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-15444	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2018-15444	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: VULHUB: VHN-125704 // BID: 105860 // JVNDB: JVNDB-2018-013967 // CNNVD: CNNVD-201811-191 // NVD: CVE-2018-15444

CREDITS

Cisco would like to thank Chris Lyne from Tenable for reporting this vulnerability.

Trust: 0.6

sources: CNNVD: CNNVD-201811-191

SOURCES

db:	VULHUB	id:	VHN-125704
db:	BID	id:	105860
db:	JVNDB	id:	JVNDB-2018-013967
db:	CNNVD	id:	CNNVD-201811-191
db:	NVD	id:	CVE-2018-15444

LAST UPDATE DATE

2024-11-23T22:45:09.275000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-125704	date:	2019-10-09T00:00:00
db:	BID	id:	105860	date:	2018-11-07T00:00:00
db:	JVNDB	id:	JVNDB-2018-013967	date:	2019-03-07T00:00:00
db:	CNNVD	id:	CNNVD-201811-191	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2018-15444	date:	2024-11-21T03:50:48.980

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-125704	date:	2018-11-08T00:00:00
db:	BID	id:	105860	date:	2018-11-07T00:00:00
db:	JVNDB	id:	JVNDB-2018-013967	date:	2019-03-07T00:00:00
db:	CNNVD	id:	CNNVD-201811-191	date:	2018-11-08T00:00:00
db:	NVD	id:	CVE-2018-15444	date:	2018-11-08T18:29:00.303