CVE-2020-4042

EPSS 0.27%
Veröffentlicht 10.07.2020 20:15:11
Zuletzt bearbeitet 21.11.2024 05:32:12
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Bareos before version 19.2.8 and earlier allows a malicious client to communicate with the director without knowledge of the shared secret if the director allows client initiated connection and connects to the client itself. The malicious client can replay the Bareos director's cram-md5 challenge to the director itself leading to the director responding to the replayed challenge. The response obtained is then a valid reply to the directors original challenge. This is fixed in version 19.2.8.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Bareos ≫ Bareos Version <= 19.2.7

Bareos ≫ Bareos Version19.2.8 Updatepre

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.27%	0.472

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.8	2.2	4	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N
security-advisories@github.com	6.8	2.2	4	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N

CWE-294 Authentication Bypass by Capture-replay

A capture-replay flaw exists when the design of the product makes it possible for a malicious user to sniff network traffic and bypass authentication by replaying it to the server in question to the same effect as the original message (or with minor changes).

https://bugs.bareos.org/view.php?id=1250

Vendor Advisory

https://github.com/bareos/bareos/security/advisories/GHSA-vqpj-2vhj-h752

Third Party Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2020-4042

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-4042

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-4042

EUVD