Sign-up

ID

VAR-201906-0831


CVE

CVE-2017-9387


TITLE

Vera VeraEdge and Veralite Device cross-site scripting vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-014525

DESCRIPTION

An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a shell script called relay.sh which is used for creating new SSH relays for the device so that the device connects to Vera servers. All the parameters passed in this specific script are logged to a log file called log.relay in the /tmp folder. The user can also read all the log files from the device using a script called log.sh. However, when the script loads the log files it displays them with content-type text/html and passes all the logs through the ansi2html binary which converts all the character text including HTML meta-characters correctly to be displayed in the browser. This allows an attacker to use the log files as a storing mechanism for the XSS payload and thus whenever a user navigates to that log.sh script, it enables the XSS payload and allows an attacker to execute his malicious payload on the user's browser. Vera VeraEdge and Veralite The device contains a cross-site scripting vulnerability.Information may be obtained and information may be altered. This number has been reserved for identifying a security breach

Trust: 1.8

sources: NVD: CVE-2017-9387 // JVNDB: JVNDB-2017-014525 // VULHUB: VHN-117590 // VULMON: CVE-2017-9387

AFFECTED PRODUCTS

vendor:getveramodel:veralitescope:lteversion:1.7.481

Trust: 1.0

vendor:getveramodel:veraedgescope:lteversion:1.7.19

Trust: 1.0

vendor:vera controlmodel:veraedgescope:eqversion:1.7.19

Trust: 0.8

vendor:vera controlmodel:veralitescope:eqversion:1.7.481

Trust: 0.8

sources: JVNDB: JVNDB-2017-014525 // NVD: CVE-2017-9387

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-9387
value: MEDIUM

Trust: 1.0

NVD: CVE-2017-9387
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201706-121
value: MEDIUM

Trust: 0.6

VULHUB: VHN-117590
value: LOW

Trust: 0.1

VULMON: CVE-2017-9387
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2017-9387
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-117590
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-9387
baseSeverity: MEDIUM
baseScore: 5.4
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: REQUIRED
scope: CHANGED
confidentialityImpact: LOW
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 2.3
impactScore: 2.7
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-117590 // VULMON: CVE-2017-9387 // JVNDB: JVNDB-2017-014525 // CNNVD: CNNVD-201706-121 // NVD: CVE-2017-9387

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.9

sources: VULHUB: VHN-117590 // JVNDB: JVNDB-2017-014525 // NVD: CVE-2017-9387

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201706-121

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201706-121

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-014525

PATCH
title:VeraEdgeurl:https://getvera.com/controllers/veraedge/
Trust: 0.8
title:VeraLiteurl:https://getvera.com/controllers/veralite/
Trust: 0.8
title:IoT_vulnerabilitiesurl:https://github.com/ethanhunnt/IoT_vulnerabilities 
Trust: 0.1
sources:
            
            
            VULMON: CVE-2017-9387 // 
            
            
            
            JVNDB: JVNDB-2017-014525

EXTERNAL IDS
db:NVDid:CVE-2017-9387
Trust: 2.7
db:JVNDBid:JVNDB-2017-014525
Trust: 0.8
db:CNNVDid:CNNVD-201706-121
Trust: 0.6
db:VULHUBid:VHN-117590
Trust: 0.1
db:VULMONid:CVE-2017-9387
Trust: 0.1
db:PACKETSTORMid:153242
Trust: 0.1
sources:
            
            
            VULHUB: VHN-117590 // 
            
            
            
            VULMON: CVE-2017-9387 // 
            
            
            
            JVNDB: JVNDB-2017-014525 // 
            
            
            
            PACKETSTORM: 153242 // 
            
            
            
            CNNVD: CNNVD-201706-121 // 
            
            
            
            NVD: CVE-2017-9387

REFERENCES
url:https://github.com/ethanhunnt/iot_vulnerabilities/blob/master/vera_sec_issues.pdf
Trust: 2.6
url:https://seclists.org/bugtraq/2019/jun/8
Trust: 1.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-9387
Trust: 1.5
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-9387
Trust: 0.8
url:https://cwe.mitre.org/data/definitions/79.html
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
url:https://github.com/ethanhunnt/iot_vulnerabilities
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9381
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9391
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9389
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9390
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9388
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9385
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9386
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9383
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9392
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9382
Trust: 0.1
url:https://nvd.nist.gov/vuln/detail/cve-2017-9384
Trust: 0.1
sources:
            
            
            VULHUB: VHN-117590 // 
            
            
            
            VULMON: CVE-2017-9387 // 
            
            
            
            JVNDB: JVNDB-2017-014525 // 
            
            
            
            PACKETSTORM: 153242 // 
            
            
            
            CNNVD: CNNVD-201706-121 // 
            
            
            
            NVD: CVE-2017-9387

CREDITS
Mandar Satam
Trust: 0.1
sources:
            
            
            PACKETSTORM: 153242

SOURCES
db:VULHUBid:VHN-117590
db:VULMONid:CVE-2017-9387
db:JVNDBid:JVNDB-2017-014525
db:PACKETSTORMid:153242
db:CNNVDid:CNNVD-201706-121
db:NVDid:CVE-2017-9387

LAST UPDATE DATE
2024-11-23T21:52:09.912000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-117590date:2019-06-20T00:00:00
db:VULMONid:CVE-2017-9387date:2019-06-20T00:00:00
db:JVNDBid:JVNDB-2017-014525date:2019-06-24T00:00:00
db:CNNVDid:CNNVD-201706-121date:2019-06-21T00:00:00
db:NVDid:CVE-2017-9387date:2024-11-21T03:35:59.340

SOURCES RELEASE DATE
db:VULHUBid:VHN-117590date:2019-06-17T00:00:00
db:VULMONid:CVE-2017-9387date:2019-06-17T00:00:00
db:JVNDBid:JVNDB-2017-014525date:2019-06-24T00:00:00
db:PACKETSTORMid:153242date:2019-06-07T15:06:02
db:CNNVDid:CNNVD-201706-121date:2017-06-06T00:00:00
db:NVDid:CVE-2017-9387date:2019-06-17T20:15:09.383