Vulnerability-Lookup

CNVD-2018-09147

Vulnerability from cnvd - Published: 2018-05-09

Title

Pivotal Spring Cloud SSO Connector身份验证漏洞

Description

Pivotal Spring Cloud SSO Connector是美国Pivotal Software公司的一款用于Cloud Foundry的一款单点登录连接器。 Pivotal Spring Cloud SSO Connector 2.1.2版本中存在安全漏洞。攻击者可利用该漏洞对未绑定的资源服务器进行身份验证。

Severity

高

Patch Name

Pivotal Spring Cloud SSO Connector身份验证漏洞的补丁

Patch Description

Pivotal Spring Cloud SSO Connector是美国Pivotal Software公司的一款用于Cloud Foundry的一款单点登录连接器。 Pivotal Spring Cloud SSO Connector 2.1.2版本中存在安全漏洞。攻击者可利用该漏洞对未绑定的资源服务器进行身份验证。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://pivotal.io/security/cve-2018-1256

Reference

https://pivotal.io/security/cve-2018-1256

Impacted products

Name
Pivotal Spring Cloud SSO Connector 2.1.2

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-1256"
    }
  },
  "description": "Pivotal Spring Cloud SSO Connector\u662f\u7f8e\u56fdPivotal Software\u516c\u53f8\u7684\u4e00\u6b3e\u7528\u4e8eCloud Foundry\u7684\u4e00\u6b3e\u5355\u70b9\u767b\u5f55\u8fde\u63a5\u5668\u3002\r\n\r\nPivotal Spring Cloud SSO Connector 2.1.2\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bf9\u672a\u7ed1\u5b9a\u7684\u8d44\u6e90\u670d\u52a1\u5668\u8fdb\u884c\u8eab\u4efd\u9a8c\u8bc1\u3002",
  "discovererName": "Pivotal SSO Service team",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://pivotal.io/security/cve-2018-1256",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-09147",
  "openTime": "2018-05-09",
  "patchDescription": "Pivotal Spring Cloud SSO Connector\u662f\u7f8e\u56fdPivotal Software\u516c\u53f8\u7684\u4e00\u6b3e\u7528\u4e8eCloud Foundry\u7684\u4e00\u6b3e\u5355\u70b9\u767b\u5f55\u8fde\u63a5\u5668\u3002\r\n\r\nPivotal Spring Cloud SSO Connector 2.1.2\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bf9\u672a\u7ed1\u5b9a\u7684\u8d44\u6e90\u670d\u52a1\u5668\u8fdb\u884c\u8eab\u4efd\u9a8c\u8bc1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Pivotal Spring Cloud SSO Connector\u8eab\u4efd\u9a8c\u8bc1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Pivotal Spring Cloud SSO Connector 2.1.2"
  },
  "referenceLink": "https://pivotal.io/security/cve-2018-1256",
  "serverity": "\u9ad8",
  "submitTime": "2018-05-09",
  "title": "Pivotal Spring Cloud SSO Connector\u8eab\u4efd\u9a8c\u8bc1\u6f0f\u6d1e"
}

CVE-2018-1256 (GCVE-0-2018-1256)

Vulnerability from cvelistv5 – Published: 2018-05-07 15:00 – Updated: 2024-09-17 01:06

Summary

Spring Cloud SSO Connector, version 2.1.2, contains a regression which disables issuer validation in resource servers that are not bound to the SSO service. In PCF deployments with multiple SSO service plans, a remote attacker can authenticate to unbound resource servers which use this version of the SSO Connector with tokens generated from another service plan.

Severity

No CVSS data available.

CWE

Improper Access Control

Assigner

dell

References

1 reference

URL	Tags
https://pivotal.io/security/cve-2018-1256	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
Pivotal	Spring Cloud SSO Connector	Affected: 2.1.2

Date Public

2018-04-29 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:51:49.033Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://pivotal.io/security/cve-2018-1256"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Spring Cloud SSO Connector",
          "vendor": "Pivotal",
          "versions": [
            {
              "status": "affected",
              "version": "2.1.2"
            }
          ]
        }
      ],
      "datePublic": "2018-04-29T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Spring Cloud SSO Connector, version 2.1.2, contains a regression which disables issuer validation in resource servers that are not bound to the SSO service. In PCF deployments with multiple SSO service plans, a remote attacker can authenticate to unbound resource servers which use this version of the SSO Connector with tokens generated from another service plan."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Improper Access Control",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-05-07T14:57:01.000Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://pivotal.io/security/cve-2018-1256"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security_alert@emc.com",
          "DATE_PUBLIC": "2018-04-29T00:00:00",
          "ID": "CVE-2018-1256",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Spring Cloud SSO Connector",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "2.1.2"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Pivotal"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Spring Cloud SSO Connector, version 2.1.2, contains a regression which disables issuer validation in resource servers that are not bound to the SSO service. In PCF deployments with multiple SSO service plans, a remote attacker can authenticate to unbound resource servers which use this version of the SSO Connector with tokens generated from another service plan."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Improper Access Control"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://pivotal.io/security/cve-2018-1256",
              "refsource": "CONFIRM",
              "url": "https://pivotal.io/security/cve-2018-1256"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2018-1256",
    "datePublished": "2018-05-07T15:00:00.000Z",
    "dateReserved": "2017-12-06T00:00:00.000Z",
    "dateUpdated": "2024-09-17T01:06:26.892Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2018-09147

CVE-2018-1256 (GCVE-0-2018-1256)

Tags

Sightings

Nomenclature