CVE-2019-5456 - OpenCVE

SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= 5.10.21 and their actual SMTP server to record their SMTP credentials for malicious use later.

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:M/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Ui	Unifi Controller

Configuration 1 [-]

cpe:2.3:a:ui:unifi_controller:*:*:*:*:*:*:*:*

References

Link	Resource
https://community.ui.com/releases/862b962b-55f6-4324-96be-610f647d5c1c	Release Notes Vendor Advisory
https://community.ui.com/releases/9f698d0b-8279-40d3-9f1a-d36db4813124	Release Notes Vendor Advisory
https://community.ui.com/releases/Security-Advisory-Bulletin-003-003/982bbaa8-2a07-4f81-a5f6-0bb84753f391	Vendor Advisory
https://hackerone.com/reports/519582	Permissions Required

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: hackerone

Published: 2019-07-30T20:19:48

Updated: 2019-07-30T20:19:48

Reserved: 2019-01-04T00:00:00

Link: CVE-2019-5456

JSON object: View

NVD Information

Status : Analyzed

Published: 2019-07-30T21:15:12.037

Modified: 2022-12-06T20:51:30.887

Link: CVE-2019-5456

JSON object: View

Redhat Information

No data.

CWE

{"containers": {"cna": {"affected": [{"product": "UniFi", "vendor": "UniFi", "versions": [{"status": "affected", "version": "<= 5.10.21"}]}], "datePublic": "2019-05-15T00:00:00", "descriptions": [{"lang": "en", "value": "SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= 5.10.21 and their actual SMTP server to record their SMTP credentials for malicious use later."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-300", "description": "Man-in-the-Middle (CWE-300)", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2019-07-30T20:19:48", "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "shortName": "hackerone"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://hackerone.com/reports/519582"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://community.ui.com/releases/Security-Advisory-Bulletin-003-003/982bbaa8-2a07-4f81-a5f6-0bb84753f391"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://community.ui.com/releases/862b962b-55f6-4324-96be-610f647d5c1c"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://community.ui.com/releases/9f698d0b-8279-40d3-9f1a-d36db4813124"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "support@hackerone.com", "ID": "CVE-2019-5456", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "UniFi", "version": {"version_data": [{"version_value": "<= 5.10.21"}]}}]}, "vendor_name": "UniFi"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= 5.10.21 and their actual SMTP server to record their SMTP credentials for malicious use later."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Man-in-the-Middle (CWE-300)"}]}]}, "references": {"reference_data": [{"name": "https://hackerone.com/reports/519582", "refsource": "MISC", "url": "https://hackerone.com/reports/519582"}, {"name": "https://community.ui.com/releases/Security-Advisory-Bulletin-003-003/982bbaa8-2a07-4f81-a5f6-0bb84753f391", "refsource": "CONFIRM", "url": "https://community.ui.com/releases/Security-Advisory-Bulletin-003-003/982bbaa8-2a07-4f81-a5f6-0bb84753f391"}, {"name": "https://community.ui.com/releases/862b962b-55f6-4324-96be-610f647d5c1c", "refsource": "CONFIRM", "url": "https://community.ui.com/releases/862b962b-55f6-4324-96be-610f647d5c1c"}, {"name": "https://community.ui.com/releases/9f698d0b-8279-40d3-9f1a-d36db4813124", "refsource": "CONFIRM", "url": "https://community.ui.com/releases/9f698d0b-8279-40d3-9f1a-d36db4813124"}]}}}}, "cveMetadata": {"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1", "assignerShortName": "hackerone", "cveId": "CVE-2019-5456", "datePublished": "2019-07-30T20:19:48", "dateReserved": "2019-01-04T00:00:00", "dateUpdated": "2019-07-30T20:19:48", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ui:unifi_controller:*:*:*:*:*:*:*:*", "matchCriteriaId": "EFAB8C2E-16B2-476E-9D1D-F374426A7A04", "versionEndIncluding": "5.10.21", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= 5.10.21 and their actual SMTP server to record their SMTP credentials for malicious use later."}, {"lang": "es", "value": "Un MITM de SMTP se refiere a un actor malicioso que configura un servidor proxy SMTP entre la versi\u00f3n anterior a 5.10.21 (incluida) del controlador UniFi y su servidor SMTP actual, para registrar sus credenciales SMTP para un uso malicioso posterior."}], "id": "CVE-2019-5456", "lastModified": "2022-12-06T20:51:30.887", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-07-30T21:15:12.037", "references": [{"source": "support@hackerone.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://community.ui.com/releases/862b962b-55f6-4324-96be-610f647d5c1c"}, {"source": "support@hackerone.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://community.ui.com/releases/9f698d0b-8279-40d3-9f1a-d36db4813124"}, {"source": "support@hackerone.com", "tags": ["Vendor Advisory"], "url": "https://community.ui.com/releases/Security-Advisory-Bulletin-003-003/982bbaa8-2a07-4f81-a5f6-0bb84753f391"}, {"source": "support@hackerone.com", "tags": ["Permissions Required"], "url": "https://hackerone.com/reports/519582"}], "sourceIdentifier": "support@hackerone.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-255"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-300"}], "source": "support@hackerone.com", "type": "Secondary"}]}