CVE-2017-6910

The HTTP and WebSocket engine components in the server in Kaazing Gateway before 4.5.3 hotfix-1, Gateway - JMS Edition before 4.0.5 hotfix-15, 4.0.6 before hotfix-4, 4.0.7, 4.0.9 before hotfix-19, 4.4.x before 4.4.2 hotfix-1, 4.5.x before 4.5.3 hotfix-1, and Gateway Community and Enterprise Editions before 5.6.0 allow remote attackers to bypass intended access restrictions and obtain sensitive information via vectors related to HTTP request handling.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://support.kaazing.com/hc/en-us/articles/115004752368	Mitigation Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:kaazing:kaazing_gateway::::::::
	cpe:2.3:a:kaazing:kaazing_gateway:4.5.3:::::::*
	cpe:2.3:a:kaazing:kaazing_gateway:4.5.3:hotfix1::::::

Configuration 2 (hide)

OR	cpe:2.3:a:kaazing:kaazing_gateway::hotfix1:::jms:::
	cpe:2.3:a:kaazing:kaazing_gateway:::::jms:::*
	cpe:2.3:a:kaazing:kaazing_gateway:4.0.5::::jms:::
	cpe:2.3:a:kaazing:kaazing_gateway:4.0.6::::jms:::
	cpe:2.3:a:kaazing:kaazing_gateway:4.0.6:hotfix2:::jms:::*
	cpe:2.3:a:kaazing:kaazing_gateway:4.0.7::::jms:::
	cpe:2.3:a:kaazing:kaazing_gateway:4.4.2:hotfix1:::jms:::*
	cpe:2.3:a:kaazing:kaazing_gateway:4.5.3:hotfix1:::jms:::*

Configuration 3 (hide)

OR	cpe:2.3:a:tenefit:kaazing_websocket_gateway:::::community:::*
	cpe:2.3:a:tenefit:kaazing_websocket_gateway:::::enterprise:::*

History

No history.

Information

Published : 2018-04-12 15:29

Updated : 2024-02-04 19:46

NVD link : CVE-2017-6910

Mitre link : CVE-2017-6910

CVE.ORG link : CVE-2017-6910

JSON object : View

Products Affected

kaazing

kaazing_gateway

tenefit

kaazing_websocket_gateway

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2017-6910", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2018-04-12T15:29:00.537", "references": [{"url": "https://support.kaazing.com/hc/en-us/articles/115004752368", "tags": ["Mitigation", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "The HTTP and WebSocket engine components in the server in Kaazing Gateway before 4.5.3 hotfix-1, Gateway - JMS Edition before 4.0.5 hotfix-15, 4.0.6 before hotfix-4, 4.0.7, 4.0.9 before hotfix-19, 4.4.x before 4.4.2 hotfix-1, 4.5.x before 4.5.3 hotfix-1, and Gateway Community and Enterprise Editions before 5.6.0 allow remote attackers to bypass intended access restrictions and obtain sensitive information via vectors related to HTTP request handling."}, {"lang": "es", "value": "Los componentes del motor HTTP y WebSocket en el servidor en Kaazing Gateway, en versiones anteriores a la 4.5.3 hotfix-1; Gateway - JMS Edition, en versiones anteriores a la 4.0.5 hotfix-15, 4.0.6 anteriores al hotfix-4, 4.0.7, 4.0.9 anteriores al hotfix-19, 4.4.x anteriores a la 4.4.2 hotfix-1, 4.5.x anteriores a la 4.5.3 hotfix-1; y las ediciones Community y Enterprise de Gateway anteriores a la versi\u00f3n 5.6.0 permiten que atacantes remotos omitan las restricciones de acceso planeadas y obtengan informaci\u00f3n sensible mediante vectores relacionados con la gesti\u00f3n de peticiones HTTP."}], "lastModified": "2021-04-19T17:50:02.297", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC457927-FBA7-40B4-A8F3-43D77E050A2C", "versionEndExcluding": "4.5.3"}, {"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:4.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "605F8BA7-68CF-42B0-85A9-21AADA2DBBC4"}, {"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:4.5.3:hotfix1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6CE7386-A6A7-4083-ABCC-308BDCBB72EB"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:*:hotfix1:*:*:jms:*:*:*", "vulnerable": true, "matchCriteriaId": "07C4DEAC-6739-4195-BB6A-F61549C05608", "versionEndExcluding": "4.4.2", "versionStartIncluding": "4.4.0"}, {"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:*:*:*:*:jms:*:*:*", "vulnerable": true, "matchCriteriaId": "664A2CB3-B739-40FE-9E39-2304886E562F", "versionEndExcluding": "4.5.3", "versionStartIncluding": "4.5.0"}, {"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:4.0.5:*:*:*:jms:*:*:*", "vulnerable": true, "matchCriteriaId": "205D9C60-D31B-4F7D-8C18-B249A8A17164"}, {"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:4.0.6:*:*:*:jms:*:*:*", "vulnerable": true, "matchCriteriaId": "73B41C3E-184E-4D8B-A51D-A2FA2B813FE6"}, {"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:4.0.6:hotfix2:*:*:jms:*:*:*", "vulnerable": true, "matchCriteriaId": "8C21A5D5-D0CD-4C0A-B4B1-B347334854A0"}, {"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:4.0.7:*:*:*:jms:*:*:*", "vulnerable": true, "matchCriteriaId": "41F28304-6392-4FA2-AC2D-E29BD96EB414"}, {"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:4.4.2:hotfix1:*:*:jms:*:*:*", "vulnerable": true, "matchCriteriaId": "58CA61F8-6B9E-4A4E-88C5-D438BE71EB2A"}, {"criteria": "cpe:2.3:a:kaazing:kaazing_gateway:4.5.3:hotfix1:*:*:jms:*:*:*", "vulnerable": true, "matchCriteriaId": "CEA5CD95-09A5-4B76-A070-765430822B05"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:tenefit:kaazing_websocket_gateway:*:*:*:*:community:*:*:*", "vulnerable": true, "matchCriteriaId": "4285FC8E-DC4C-4C33-99EB-D00753AE6A15", "versionEndExcluding": "5.6.0"}, {"criteria": "cpe:2.3:a:tenefit:kaazing_websocket_gateway:*:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "195047EF-F9E8-4502-B773-5A6476A55345", "versionEndExcluding": "5.6.0"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}