CVE-2018-15919

Published Aug 28, 2018

Last updated 24 days ago

CVSS medium 5.3

Overview

Description: Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'
Source: cve@mitre.org
NVD status: Modified
Products: openssh, cloud_backup, data_ontap_edge, ontap_select_deploy, steelstore, cn1610_firmware

Risk scores

CVSS 3.1

Type: Secondary
Base score: 5.3
Impact score: 1.4
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Severity: MEDIUM

CVSS 3.0

Type: Primary
Base score: 5.3
Impact score: 1.4
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-200
134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-200

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5FCBB28-0F8D-4779-9E70-42168F6E8205",
            "versionEndIncluding": "7.8",
            "versionStartIncluding": "5.9"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C2089EE-5D7F-47EC-8EA5-0F69790564C4"
          },
          {
            "criteria": "cpe:2.3:a:netapp:data_ontap_edge:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0C4B1E5-75BF-43AE-BBAC-0DD4124C71ED"
          },
          {
            "criteria": "cpe:2.3:a:netapp:ontap_select_deploy:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E968916-8CE0-4165-851F-14E37ECEA948"
          },
          {
            "criteria": "cpe:2.3:a:netapp:steelstore:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0DF5449D-22D2-48B4-8F50-57B43DCB15B9"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:netapp:cn1610_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB30733E-68FC-49C4-86C0-7FEE75C366BF"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:netapp:cn1610:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6361DAC6-600F-4B15-8797-D67F298F46FB"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References