CVE-2019-10882

EPSS 0.05%
Veröffentlicht 26.09.2019 16:15:10
Zuletzt bearbeitet 21.11.2024 04:20:02
Quelle cert@airbus.com
CVE-Watchlists
Login
Unerledigt
Login

The Netskope client service, v57 before 57.2.0.219 and v60 before 60.2.0.214, running with NT\SYSTEM privilege, accepts network connections from localhost. The connection handling function in this service suffers from a stack based buffer overflow in "doHandshakefromServer" function. Local users can use this vulnerability to trigger a crash of the service and potentially cause additional impact on the system.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 2 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Netskope ≫ Netskope Version >= 57 < 57.2.0.219

Netskope ≫ Netskope Version >= 60 < 60.2.0.214

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.113

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C
cert@airbus.com	5.5	1.8	3.6	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://airbus-seclab.github.io/advisories/netskope.html

Third Party Advisory

https://support.netskope.com/hc/article_attachments/360033003553/Sprint_62_Release_Notes.pdf

Vendor Advisory

Release Notes

Permissions Required

https://support.netskope.com/hc/en-us/articles/360014589894-Netskope-Client

Vendor Advisory

Permissions Required

https://nvd.nist.gov/vuln/detail/CVE-2019-10882