From 65bcbd7326b4758f35fd4d0eb296b3068c49f688 Mon Sep 17 00:00:00 2001 From: Stanley S Huang Date: Thu, 8 Jul 2021 15:38:03 +0800 Subject: [PATCH] QSA-21-19 CVE-2021-28809 --- 2021/28xxx/CVE-2021-28809.json | 120 +++++++++++++++++++++++++++++++-- 1 file changed, 114 insertions(+), 6 deletions(-) diff --git a/2021/28xxx/CVE-2021-28809.json b/2021/28xxx/CVE-2021-28809.json index 3ef83540593..da1f758afaa 100644 --- a/2021/28xxx/CVE-2021-28809.json +++ b/2021/28xxx/CVE-2021-28809.json @@ -1,18 +1,126 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { + "ASSIGNER": "security@qnap.com", + "DATE_PUBLIC": "2021-07-08T15:22:00.000Z", "ID": "CVE-2021-28809", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "STATE": "PUBLIC", + "TITLE": "Missing Authentication for Critical Function in RTRR Server in HBS3" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "HBS 3", + "version": { + "version_data": [ + { + "platform": "QTS 4.3.6", + "version_affected": "<", + "version_value": "v3.0.210507" + }, + { + "platform": "QTS 4.3.4", + "version_affected": "<", + "version_value": "v3.0.210506" + }, + { + "platform": "QTS 4.3.3", + "version_affected": "<", + "version_value": "v3.0.210506" + } + ] + } + } + ] + }, + "vendor_name": "QNAP Systems Inc." + } + ] + } + }, + "credit": [ + { + "lang": "eng", + "value": "Ta-Lun Yen of TXOne IoT/ICS Security Research Labs of Trend Micro working with Trend Micro’s Zero Day Initiative" + } + ], + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An improper access control vulnerability has been reported to affect certain legacy versions of HBS 3. If exploited, this vulnerability allows attackers to compromise the security of the operating system.QNAP have already fixed this vulnerability in the following versions of HBS 3:\nQTS 4.3.6: HBS 3 v3.0.210507 and later\nQTS 4.3.4: HBS 3 v3.0.210506 and later\nQTS 4.3.3: HBS 3 v3.0.210506 and later\n" } ] + }, + "generator": { + "engine": "Vulnogram 0.0.9" + }, + "impact": { + "cvss": { + "attackComplexity": "LOW", + "attackVector": "NETWORK", + "availabilityImpact": "HIGH", + "baseScore": 9.8, + "baseSeverity": "CRITICAL", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "privilegesRequired": "NONE", + "scope": "UNCHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "version": "3.1" + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-284 Improper Access Control" + } + ] + }, + { + "description": [ + { + "lang": "eng", + "value": "CWE-306 Missing Authentication for Critical Function" + } + ] + }, + { + "description": [ + { + "lang": "eng", + "value": "CWE-749 Exposed Dangerous Method or Function" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "CONFIRM", + "url": "https://www.qnap.com/en/security-advisory/qsa-21-19" + } + ] + }, + "solution": [ + { + "lang": "eng", + "value": "QNAP have already fixed this vulnerability in the following versions of HBS 3:\nQTS 4.3.6: HBS 3 v3.0.210507 and later\nQTS 4.3.4: HBS 3 v3.0.210506 and later\nQTS 4.3.3: HBS 3 v3.0.210506 and later\n" + } + ], + "source": { + "advisory": "QSA-21-19", + "discovery": "EXTERNAL" } } \ No newline at end of file