CVE-2017-8040 - Vulnerability Details - OpenCVE

In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3, an XXE (XML External Entity) attack was discovered in the Single Sign-On service dashboard. Privileged users can in some cases upload malformed XML leading to exposure of data on the Single Sign-On service broker file system.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Vmware	Single Sign-on For Pivotal Cloud Foundry

Configuration 1 [-]

OR	cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.3.0:::::::*
	cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.3.2:::::::*
	cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.3.3:::::::*
	cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.4.0:::::::*
	cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.4.1:::::::*
	cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.4.2:::::::*
	cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.4.3:::::::*

No data.

References

Link	Providers
http://www.securityfocus.com/bid/100617
https://pivotal.io/security/cve-2017-8040

History

No history.

MITRE

Status: PUBLISHED

Assigner: dell

Published: 2017-09-09T01:00:00

Updated: 2024-08-05T16:19:29.784Z

Reserved: 2017-04-21T00:00:00

Link: CVE-2017-8040

Vulnrichment

No data.

NVD

Status : Modified

Published: 2017-09-09T01:29:03.657

Modified: 2024-11-21T03:33:12.230

Link: CVE-2017-8040

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "PCF Single Sign-On for PCF:1.3.x versions prior to 1.3.4, 1.4.x versions prior to 1.4.3", "vendor": "n/a", "versions": [{"status": "affected", "version": "PCF Single Sign-On for PCF:1.3.x versions prior to 1.3.4, 1.4.x versions prior to 1.4.3"}]}], "datePublic": "2017-09-08T00:00:00", "descriptions": [{"lang": "en", "value": "In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3, an XXE (XML External Entity) attack was discovered in the Single Sign-On service dashboard. Privileged users can in some cases upload malformed XML leading to exposure of data on the Single Sign-On service broker file system."}], "problemTypes": [{"descriptions": [{"description": "XXE Vulnerability", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-09T09:57:01", "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "shortName": "dell"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://pivotal.io/security/cve-2017-8040"}, {"name": "100617", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/100617"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security_alert@emc.com", "ID": "CVE-2017-8040", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "PCF Single Sign-On for PCF:1.3.x versions prior to 1.3.4, 1.4.x versions prior to 1.4.3", "version": {"version_data": [{"version_value": "PCF Single Sign-On for PCF:1.3.x versions prior to 1.3.4, 1.4.x versions prior to 1.4.3"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3, an XXE (XML External Entity) attack was discovered in the Single Sign-On service dashboard. Privileged users can in some cases upload malformed XML leading to exposure of data on the Single Sign-On service broker file system."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "XXE Vulnerability"}]}]}, "references": {"reference_data": [{"name": "https://pivotal.io/security/cve-2017-8040", "refsource": "CONFIRM", "url": "https://pivotal.io/security/cve-2017-8040"}, {"name": "100617", "refsource": "BID", "url": "http://www.securityfocus.com/bid/100617"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T16:19:29.784Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://pivotal.io/security/cve-2017-8040"}, {"name": "100617", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/100617"}]}]}, "cveMetadata": {"assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "assignerShortName": "dell", "cveId": "CVE-2017-8040", "datePublished": "2017-09-09T01:00:00", "dateReserved": "2017-04-21T00:00:00", "dateUpdated": "2024-08-05T16:19:29.784Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "3637F500-B290-4E67-9479-DDD225596E80", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "57579759-CA64-4722-BAEC-6B111BB23BF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "8EDE1123-0E6A-4293-A84A-6C7D5E87C60C", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "C23C2CCE-3943-48BC-AB44-FE6E19F1DF39", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "2075D6CD-CC36-42C7-8F4D-E14E9B946367", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "D1C6E42F-0C08-4F77-8D42-1BEA8CCD38DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:single_sign-on_for_pivotal_cloud_foundry:1.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "6ED7CDE4-3AF9-4171-8F63-1BE147487A02", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In Single Sign-On for Pivotal Cloud Foundry (PCF) 1.3.x versions prior to 1.3.4 and 1.4.x versions prior to 1.4.3, an XXE (XML External Entity) attack was discovered in the Single Sign-On service dashboard. Privileged users can in some cases upload malformed XML leading to exposure of data on the Single Sign-On service broker file system."}, {"lang": "es", "value": "En Single Sign-On para Pivotal Cloud Foundry (PCF) en versiones 1.3.x anteriores a la 1.3.4 y en versiones a la 1.4.x anteriores a la 1.4.3, se ha descubierto un ataque XXE (XML External Entity) en el cuadro de mandos del servicio Single Sign-On. En algunos casos, los usuarios con privilegios pueden subir archivos XML mal formados, lo que llevar\u00eda a una exposici\u00f3n de datos en el sistema de archivos del br\u00f3ker de servicios Single Sign-On."}], "id": "CVE-2017-8040", "lastModified": "2024-11-21T03:33:12.230", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-09-09T01:29:03.657", "references": [{"source": "security_alert@emc.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/100617"}, {"source": "security_alert@emc.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://pivotal.io/security/cve-2017-8040"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/100617"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://pivotal.io/security/cve-2017-8040"}], "sourceIdentifier": "security_alert@emc.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-611"}], "source": "nvd@nist.gov", "type": "Primary"}]}