CVE-2015-2912

{"id": "CVE-2015-2912", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2015-12-31T05:59:08.593", "references": [{"url": "https://github.com/orientechnologies/orientdb/issues/4824", "tags": ["Vendor Advisory"], "source": "cret@cert.org"}, {"url": "https://www.kb.cert.org/vuls/id/845332", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cret@cert.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-352"}]}], "descriptions": [{"lang": "en", "value": "The JSONP endpoint in the Studio component in OrientDB Server Community Edition before 2.0.15 and 2.1.x before 2.1.1 does not properly restrict callback values, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks, and obtain sensitive information, via a crafted HTTP request."}, {"lang": "es", "value": "El punto de entrada JSONP en el componente Studio en OrientDB Server Community Edition en versiones anteriores a 2.0.15 y 2.1.x en versiones anteriores a 2.1.1 no restringe correctamente los valores de llamada de retorno, lo que permite a atacantes remotos llevar a cabo ataques CSRF, y obtener informaci\u00f3n sensible, a trav\u00e9s de una petici\u00f3n HTTP manipulada."}], "lastModified": "2015-12-31T20:32:36.447", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:orientdb:orientdb:*:*:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "B75A371B-9102-4E08-AA64-24196B86E4EE", "versionEndIncluding": "2.0.14"}, {"criteria": "cpe:2.3:a:orientdb:orientdb:2.1.0:*:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "C913E0D2-2E28-4BB6-957C-9832193C3FB4"}], "operator": "OR"}]}], "sourceIdentifier": "cret@cert.org"}