CVE-2018-2415 - OpenCVE

SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability when error pages are displayed.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Sap	Netweaver Java Web Container And Http Service Engine J2ee Engine Server Core

Configuration 1 [-]

OR	cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.10:::::::*
	cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.11:::::::*
	cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.30:::::::*
	cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.31:::::::*
	cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.40:::::::*
	cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.50:::::::*

Configuration 2 [-]

OR	cpe:2.3:a:sap:j2ee_engine_server_core:7.11:::::::*
	cpe:2.3:a:sap:j2ee_engine_server_core:7.30:::::::*
	cpe:2.3:a:sap:j2ee_engine_server_core:7.31:::::::*
	cpe:2.3:a:sap:j2ee_engine_server_core:7.40:::::::*
	cpe:2.3:a:sap:j2ee_engine_server_core:7.50:::::::*

References

Link	Resource
http://www.securityfocus.com/bid/104130	Third Party Advisory VDB Entry
https://blogs.sap.com/2018/05/08/sap-security-patch-day-may-2018/	Vendor Advisory
https://launchpad.support.sap.com/#/notes/2550202	Permissions Required

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: sap

Published: 2018-05-09T20:00:00

Updated: 2018-05-10T09:57:01

Reserved: 2017-12-15T00:00:00

Link: CVE-2018-2415

JSON object: View

NVD Information

Status : Modified

Published: 2018-05-09T20:29:00.667

Modified: 2019-10-09T23:40:04.450

Link: CVE-2018-2415

JSON object: View

Redhat Information

No data.

CWE

CWE-172

{"containers": {"cna": {"affected": [{"product": "SAP NetWeaver Application Server (Engine API)", "vendor": "SAP SE", "versions": [{"status": "affected", "version": "from 7.10 to 7.11"}, {"status": "affected", "version": "7.30"}, {"status": "affected", "version": "7.31"}, {"status": "affected", "version": "7.40"}, {"status": "affected", "version": "7.50"}]}, {"product": "SAP NetWeaver Application Server (J2EE Engine Server Core)", "vendor": "SAP SE", "versions": [{"status": "affected", "version": "7.11"}, {"status": "affected", "version": "7.30"}, {"status": "affected", "version": "7.31"}, {"status": "affected", "version": "7.40"}, {"status": "affected", "version": "7.50"}]}], "datePublic": "2018-05-09T00:00:00", "descriptions": [{"lang": "en", "value": "SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability when error pages are displayed."}], "metrics": [{"cvssV3_0": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N", "version": "3.0"}}], "problemTypes": [{"descriptions": [{"description": "Content Spoofing", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-05-10T09:57:01", "orgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd", "shortName": "sap"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://blogs.sap.com/2018/05/08/sap-security-patch-day-may-2018/"}, {"tags": ["x_refsource_MISC"], "url": "https://launchpad.support.sap.com/#/notes/2550202"}, {"name": "104130", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/104130"}], "source": {"discovery": "UNKNOWN"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cna@sap.com", "ID": "CVE-2018-2415", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "SAP NetWeaver Application Server (Engine API)", "version": {"version_data": [{"version_affected": "=", "version_value": "from 7.10 to 7.11"}, {"version_affected": "=", "version_value": "7.30"}, {"version_affected": "=", "version_value": "7.31"}, {"version_affected": "=", "version_value": "7.40"}, {"version_affected": "=", "version_value": "7.50"}]}}, {"product_name": "SAP NetWeaver Application Server (J2EE Engine Server Core)", "version": {"version_data": [{"version_affected": "=", "version_value": "7.11"}, {"version_affected": "=", "version_value": "7.30"}, {"version_affected": "=", "version_value": "7.31"}, {"version_affected": "=", "version_value": "7.40"}, {"version_affected": "=", "version_value": "7.50"}]}}]}, "vendor_name": "SAP SE"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability when error pages are displayed."}]}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N", "version": "3.0"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Content Spoofing"}]}]}, "references": {"reference_data": [{"name": "https://blogs.sap.com/2018/05/08/sap-security-patch-day-may-2018/", "refsource": "CONFIRM", "url": "https://blogs.sap.com/2018/05/08/sap-security-patch-day-may-2018/"}, {"name": "https://launchpad.support.sap.com/#/notes/2550202", "refsource": "MISC", "url": "https://launchpad.support.sap.com/#/notes/2550202"}, {"name": "104130", "refsource": "BID", "url": "http://www.securityfocus.com/bid/104130"}]}, "source": {"discovery": "UNKNOWN"}}}}, "cveMetadata": {"assignerOrgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd", "assignerShortName": "sap", "cveId": "CVE-2018-2415", "datePublished": "2018-05-09T20:00:00", "dateReserved": "2017-12-15T00:00:00", "dateUpdated": "2018-05-10T09:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.10:*:*:*:*:*:*:*", "matchCriteriaId": "3E0BC4DE-4775-47A9-994A-50D7988C985C", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.11:*:*:*:*:*:*:*", "matchCriteriaId": "D7167F0B-0C1C-4624-A4D5-0133EFCB142E", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.30:*:*:*:*:*:*:*", "matchCriteriaId": "4E7BC134-E387-43D8-B05F-20EA90E4D95A", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.31:*:*:*:*:*:*:*", "matchCriteriaId": "8B8D9985-73BA-47BE-855E-EC5C00E4B1FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.40:*:*:*:*:*:*:*", "matchCriteriaId": "1EA345DD-9D93-496C-9B0C-31A37D4D900F", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:netweaver_java_web_container_and_http_service_engine:7.50:*:*:*:*:*:*:*", "matchCriteriaId": "48B78E42-FC8D-4C4B-94CD-8D083406DF72", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sap:j2ee_engine_server_core:7.11:*:*:*:*:*:*:*", "matchCriteriaId": "36870366-7DA1-45F5-82EA-024FBF025CFA", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:j2ee_engine_server_core:7.30:*:*:*:*:*:*:*", "matchCriteriaId": "A8C1EAF6-BB67-44B3-A6E3-5DB8EE114236", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:j2ee_engine_server_core:7.31:*:*:*:*:*:*:*", "matchCriteriaId": "7A334645-13ED-4D2A-A802-7DE6B0C013C3", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:j2ee_engine_server_core:7.40:*:*:*:*:*:*:*", "matchCriteriaId": "8C374A22-DA62-42E4-A8D9-646DBD575770", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:j2ee_engine_server_core:7.50:*:*:*:*:*:*:*", "matchCriteriaId": "435F8143-1187-4D2C-975E-EC96E580D0B6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability when error pages are displayed."}, {"lang": "es", "value": "Java Web Container y HTTP Service en SAP NetWeaver Application Server (Engine API, de la versi\u00f3n 7.10 a la 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40 y 7.50) no cifran lo suficiente entradas controladas por el usuario, lo que resulta en una vulnerabilidad de suplantaci\u00f3n de contenido cuando se muestran p\u00e1ginas de error."}], "id": "CVE-2018-2415", "lastModified": "2019-10-09T23:40:04.450", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "cna@sap.com", "type": "Secondary"}]}, "published": "2018-05-09T20:29:00.667", "references": [{"source": "cna@sap.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/104130"}, {"source": "cna@sap.com", "tags": ["Vendor Advisory"], "url": "https://blogs.sap.com/2018/05/08/sap-security-patch-day-may-2018/"}, {"source": "cna@sap.com", "tags": ["Permissions Required"], "url": "https://launchpad.support.sap.com/#/notes/2550202"}], "sourceIdentifier": "cna@sap.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-172"}], "source": "nvd@nist.gov", "type": "Primary"}]}