CVE-2024-0799 - OpenCVE

An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin() function within wizardLogin.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

No data.

No data.

References

Link	Resource
https://www.tenable.com/security/research/tra-2024-07

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: tenable

Published: 2024-03-13T18:57:51.441Z

Updated: 2024-06-04T17:59:15.566Z

Reserved: 2024-01-22T22:35:57.919Z

Link: CVE-2024-0799

JSON object: View

NVD Information

Status : Awaiting Analysis

Published: 2024-03-13T19:15:46.510

Modified: 2024-03-14T12:52:21.763

Link: CVE-2024-0799

JSON object: View

Redhat Information

No data.

CWE

CWE-287

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-0799", "assignerOrgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be", "state": "PUBLISHED", "assignerShortName": "tenable", "dateReserved": "2024-01-22T22:35:57.919Z", "datePublished": "2024-03-13T18:57:51.441Z", "dateUpdated": "2024-06-04T17:59:15.566Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Unified Data Protection", "vendor": "Arcserve", "versions": [{"lessThanOrEqual": "9.2", "status": "affected", "version": "0", "versionType": "custom"}, {"lessThanOrEqual": "8.1", "status": "affected", "version": "0", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin() function within wizardLogin."}], "value": "An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin() function within wizardLogin."}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-287", "description": "CWE-287 Improper Authentication", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "5ac1ecc2-367a-4d16-a0b2-35d495ddd0be", "shortName": "tenable", "dateUpdated": "2024-03-13T18:57:51.441Z"}, "references": [{"url": "https://www.tenable.com/security/research/tra-2024-07"}], "source": {"discovery": "UNKNOWN"}, "title": "Authentication Bypass via wizardLogin in Arcserve Unified Data Protection", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-0799", "role": "CISA Coordinator", "options": [{"Exploitation": "PoC"}, {"Automatable": "Yes"}, {"Technical Impact": "Total"}], "version": "2.0.3", "timestamp": "2024-03-19T12:49:47.423192Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:arcserve:arcserve_unified_data_protection:9.2:*:*:*:*:*:*:*"], "vendor": "arcserve", "product": "arcserve_unified_data_protection", "versions": [{"status": "affected", "version": "9.2"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:59:15.566Z"}}]}}