CVE-2024-27775 - OpenCVE

SysAid before version 23.2.14 b18 - CWE-918: Server-Side Request Forgery (SSRF) may allow exposing the local OS user's NTLMv2 hash

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

No data.

No data.

References

Link	Resource
https://www.gov.il/en/Departments/faq/cve_advisories

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: INCD

Published: 2024-03-28T12:19:53.385Z

Updated: 2024-06-04T17:47:20.997Z

Reserved: 2024-02-26T09:27:55.323Z

Link: CVE-2024-27775

JSON object: View

NVD Information

Status : Awaiting Analysis

Published: 2024-03-28T13:15:47.340

Modified: 2024-03-28T16:07:30.893

Link: CVE-2024-27775

JSON object: View

Redhat Information

No data.

CWE

CWE-918

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-27775", "assignerOrgId": "a57ee1ae-c9c1-4f40-aa7b-cf10760fde3f", "state": "PUBLISHED", "assignerShortName": "INCD", "dateReserved": "2024-02-26T09:27:55.323Z", "datePublished": "2024-03-28T12:19:53.385Z", "dateUpdated": "2024-06-04T17:47:20.997Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "SysAid", "vendor": "SysAid", "versions": [{"lessThanOrEqual": "Upgrade to version 23.3.38 or later", "status": "affected", "version": "version 23.2.14 b18", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Niv Levy"}], "datePublic": "2024-03-28T12:18:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">SysAid before version 23.2.14 b18 - <span style=\"background-color: rgb(255, 255, 255);\">CWE-918: Server-Side Request Forgery (SSRF) may allow exposing the local OS user's NTLMv2 hash</span>\n\n</span>"}], "value": "\nSysAid before version 23.2.14 b18 -\u00a0CWE-918: Server-Side Request Forgery (SSRF) may allow exposing the local OS user's NTLMv2 hash\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-918", "description": "CWE-918 Server-Side Request Forgery (SSRF)", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "a57ee1ae-c9c1-4f40-aa7b-cf10760fde3f", "shortName": "INCD", "dateUpdated": "2024-03-28T12:19:53.385Z"}, "references": [{"url": "https://www.gov.il/en/Departments/faq/cve_advisories"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">Upgrade to version 23.3.38 or later</span>\n\n<br>"}], "value": "\nUpgrade to version 23.3.38 or later\n\n"}], "source": {"advisory": "ILVN-2024-0155", "discovery": "UNKNOWN"}, "title": "SysAid - CWE-918: Server-Side Request Forgery (SSRF)", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-27775", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-10T19:45:47.358316Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:47:20.997Z"}}]}}