CVE-2020-5132

SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible DNS flaw known as domain name collision vulnerability. When the users publicly display their organization’s internal domain names in the SSL-VPN authentication page, an attacker with knowledge of internal domain names can potentially take advantage of this vulnerability.

CVSS v3 5.3 MEDIUM
CVSS v2.0 5.0 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0006	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:sonicwall:sma100_firmware:10.2.0.2-20sv:::::::*
	cpe:2.3:o:sonicwall:sma100_firmware:12.4.0-2223:::::::*

cpe:2.3:h:sonicwall:sma100:-:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:sonicwall:sonicos:6.5.4.6-79n:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-09-30 06:15

Updated : 2024-02-04 21:23

NVD link : CVE-2020-5132

Mitre link : CVE-2020-5132

CVE.ORG link : CVE-2020-5132

JSON object : View

Products Affected

sonicwall

sma100
sma100_firmware
sonicos

CWE

NVD-CWE-noinfo CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2020-5132", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2020-09-30T06:15:12.953", "references": [{"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2020-0006", "tags": ["Vendor Advisory"], "source": "PSIRT@sonicwall.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}, {"type": "Secondary", "source": "PSIRT@sonicwall.com", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "SonicWall SSL-VPN products and SonicWall firewall SSL-VPN feature misconfiguration leads to possible DNS flaw known as domain name collision vulnerability. When the users publicly display their organization\u2019s internal domain names in the SSL-VPN authentication page, an attacker with knowledge of internal domain names can potentially take advantage of this vulnerability."}, {"lang": "es", "value": "Los productos SonicWall SSL-VPN y una configuraci\u00f3n inapropiada de la funcionalidad SSL-VPN del firewall SonicWall, conlleva a un posible fallo de DNS conocido como vulnerabilidad de colisi\u00f3n de nombres de dominio. Cuando los usuarios muestran p\u00fablicamente los nombres de dominio internos de su organizaci\u00f3n en la p\u00e1gina de autenticaci\u00f3n SSL-VPN, un atacante con conocimiento de los nombres de dominio internos puede potencialmente aprovecharse de esta vulnerabilidad"}], "lastModified": "2020-10-07T14:40:52.540", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sma100_firmware:10.2.0.2-20sv:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52EC8D49-2710-466B-B2A1-62295FB4A086"}, {"criteria": "cpe:2.3:o:sonicwall:sma100_firmware:12.4.0-2223:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C8C94C2-E31A-4D7E-A5FF-D5042AC52E53"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:sma100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8E4A2B7B-40F5-4AE0-ACC7-E94B82435DBA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sonicos:6.5.4.6-79n:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F773C54E-BA13-442C-96FF-1EF6E0055295"}], "operator": "OR"}]}], "sourceIdentifier": "PSIRT@sonicwall.com"}