CVE-2020-5132 - Vulnerability Details - OpenCVE

SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible DNS flaw known as domain name collision vulnerability. When the users publicly display their organization’s internal domain names in the SSL-VPN authentication page, an attacker with knowledge of internal domain names can potentially take advantage of this vulnerability.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Sonicwall	Sma100 Sma100 Firmware Sonicos

Configuration 1 [-]

AND

OR	cpe:2.3:o:sonicwall:sma100_firmware:10.2.0.2-20sv:::::::*
	cpe:2.3:o:sonicwall:sma100_firmware:12.4.0-2223:::::::*

cpe:2.3:h:sonicwall:sma100:-:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:o:sonicwall:sonicos:6.5.4.6-79n:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0006

History

No history.

MITRE

Status: PUBLISHED

Assigner: sonicwall

Published: 2020-09-30T05:25:11

Updated: 2024-08-04T08:22:08.680Z

Reserved: 2019-12-31T00:00:00

Link: CVE-2020-5132

Vulnrichment

No data.

NVD

Status : Modified

Published: 2020-09-30T06:15:12.953

Modified: 2024-11-21T05:33:36.207

Link: CVE-2020-5132

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "SMA100", "vendor": "SonicWall", "versions": [{"status": "affected", "version": "SMA100 10.2.0.2-20sv"}]}, {"product": "SMA1000", "vendor": "SonicWall", "versions": [{"status": "affected", "version": "SMA1000 12.4.0-2223"}]}, {"product": "SonicOS", "vendor": "SonicWall", "versions": [{"status": "affected", "version": "SonicOS 6.5.4.6-79n"}]}], "descriptions": [{"lang": "en", "value": "SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible DNS flaw known as domain name collision vulnerability. When the users publicly display their organization\u2019s internal domain names in the SSL-VPN authentication page, an attacker with knowledge of internal domain names can potentially take advantage of this vulnerability."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-200", "description": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2020-09-30T05:25:11", "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315", "shortName": "sonicwall"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0006"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "PSIRT@sonicwall.com", "ID": "CVE-2020-5132", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "SMA100", "version": {"version_data": [{"version_value": "SMA100 10.2.0.2-20sv"}]}}, {"product_name": "SMA1000", "version": {"version_data": [{"version_value": "SMA1000 12.4.0-2223"}]}}, {"product_name": "SonicOS", "version": {"version_data": [{"version_value": "SonicOS 6.5.4.6-79n"}]}}]}, "vendor_name": "SonicWall"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible DNS flaw known as domain name collision vulnerability. When the users publicly display their organization\u2019s internal domain names in the SSL-VPN authentication page, an attacker with knowledge of internal domain names can potentially take advantage of this vulnerability."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor"}]}]}, "references": {"reference_data": [{"name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0006", "refsource": "CONFIRM", "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0006"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T08:22:08.680Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0006"}]}]}, "cveMetadata": {"assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315", "assignerShortName": "sonicwall", "cveId": "CVE-2020-5132", "datePublished": "2020-09-30T05:25:11", "dateReserved": "2019-12-31T00:00:00", "dateUpdated": "2024-08-04T08:22:08.680Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sma100_firmware:10.2.0.2-20sv:*:*:*:*:*:*:*", "matchCriteriaId": "52EC8D49-2710-466B-B2A1-62295FB4A086", "vulnerable": true}, {"criteria": "cpe:2.3:o:sonicwall:sma100_firmware:12.4.0-2223:*:*:*:*:*:*:*", "matchCriteriaId": "4C8C94C2-E31A-4D7E-A5FF-D5042AC52E53", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:sma100:-:*:*:*:*:*:*:*", "matchCriteriaId": "8E4A2B7B-40F5-4AE0-ACC7-E94B82435DBA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sonicos:6.5.4.6-79n:*:*:*:*:*:*:*", "matchCriteriaId": "F773C54E-BA13-442C-96FF-1EF6E0055295", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible DNS flaw known as domain name collision vulnerability. When the users publicly display their organization\u2019s internal domain names in the SSL-VPN authentication page, an attacker with knowledge of internal domain names can potentially take advantage of this vulnerability."}, {"lang": "es", "value": "Los productos SonicWall SSL-VPN y una configuraci\u00f3n inapropiada de la funcionalidad SSL-VPN del firewall SonicWall, conlleva a un posible fallo de DNS conocido como vulnerabilidad de colisi\u00f3n de nombres de dominio. Cuando los usuarios muestran p\u00fablicamente los nombres de dominio internos de su organizaci\u00f3n en la p\u00e1gina de autenticaci\u00f3n SSL-VPN, un atacante con conocimiento de los nombres de dominio internos puede potencialmente aprovecharse de esta vulnerabilidad"}], "id": "CVE-2020-5132", "lastModified": "2024-11-21T05:33:36.207", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-09-30T06:15:12.953", "references": [{"source": "PSIRT@sonicwall.com", "tags": ["Vendor Advisory"], "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0006"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0006"}], "sourceIdentifier": "PSIRT@sonicwall.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "PSIRT@sonicwall.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}