Thursday, 10 August 2017

On 01:01 by admin in    No comments
A vulnerability classified as critical was found in Apache Storm up to 1.0.3/1.1.0. This vulnerability affects an unknown function of the component Worker Handler. The manipulation with an unknown input leads to a privilege escalation vulnerability. The CWE definition for the vulnerability is CWE-269. As an impact it is known to affect confidentiality, integrity, and availability.

The weakness was disclosed 08/09/2017. The advisory is shared for download at lists.apache.org. This vulnerability was named CVE-2017-9799 since 06/21/2017. No form of authentication is required for a successful exploitation. The technical details are unknown and an exploit is not available. The structure of the vulnerability defines a possible price range of USD $5k-$25k at the moment (estimation calculated on 08/10/2017).

Upgrading to version 1.0.4 or 1.1.1 eliminates this vulnerability.

CVSSv3

VulDB Base Score5.5
VulDB Temp Score5.3
VulDB VectorCVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:X/RL:O/RC:X
VulDB Reliability: Medium

CVSSv2

VectorComplexityAuthenticationConfidentialityIntegrityAvailability
LocalHighMultipleNoneNoneNone
AdjacentMediumSinglePartialPartialPartial
NetworkLowNoneCompleteCompleteComplete
VulDB Base Score4.4 (CVSS2#AV:A/AC:M/Au:N/C:P/I:P/A:P)
VulDB Temp Score3.8 (CVSS2#E:ND/RL:OF/RC:ND)
VulDB Reliability: Medium

CPE

  • cpe:/a:apache:storm:1.0.3
  • cpe:/a:apache:storm:1.1.0

Exploiting

Class: Privilege escalation (CWE-269)
Local: Yes
Remote: No

Availability: No

Price Prediction: steady
Current Price Estimation

0-Day$0-$5k$5k-$25k$25k-$100k$100k-$500k
Today$0-$5k$5k-$25k$25k-$100k$100k-$500k

Countermeasures

Recommended: Upgrade
Status: Official fix
0-Day Time: 0 days since found

Upgrade: Storm 1.0.4/1.1.1

Timeline

06/21/2017   CVE assigned
08/09/2017  +49 days Advisory disclosed
08/10/2017  +1 days VulDB entry created
08/10/2017  +0 days VulDB last update

Sources

Advisorylists.apache.org

CVE: CVE-2017-9799 (mitre.org) (nvd.nist.org) (cvedetails.com)

0 comments:

Post a comment