CVE-2017-16673

{"id": "CVE-2017-16673", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.9, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:M/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 5.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 5.3, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 1.6}]}, "published": "2017-11-09T04:29:00.220", "references": [{"url": "https://www.datto.com/partner-security-update-nov2017", "tags": ["Mitigation", "Patch", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "Datto Backup Agent 1.0.6.0 and earlier does not authenticate incoming connections. This allows an attacker to impersonate a Datto Backup Appliance to \"pair\" with the agent and issue requests to this agent, if the attacker can reach the agent on TCP port 25566 or 25568, and send unspecified \"specific information\" by which the agent identifies a network device that is \"appearing to be a valid Datto.\""}, {"lang": "es", "value": "Datto Backup Agent en versiones 1.0.6.0 y anteriores no autentica las conexiones entrantes. Esto permite que un atacante suplante Datto Backup Appliance para \"emparejarse\" con el agente y env\u00ede peticiones a dicho agente, si el atacante puede alcanzar el agente en el puerto TCP 25566 o 25568 y enviar \"informaci\u00f3n concreta\" no especificada por la cual el agente identifica un dispositivo de red que \"parece que es un Datto v\u00e1lido\"."}], "lastModified": "2017-11-28T19:03:24.737", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:datto:backup_agent:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04C8ADE2-6DB1-4425-9B57-B92988E022BD", "versionEndIncluding": "1.0.6.0"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}