{
  "id": "CVE-2020-12760",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2020-05-11T16:15:13.147",
  "lastModified": "2024-11-21T05:00:13.653",
  "vulnStatus": "Modified",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue was discovered in OpenNMS Horizon before 26.0.1, and Meridian before 2018.1.19 and 2019 before 2019.1.7. The ActiveMQ channel configuration allowed for arbitrary deserialization of Java objects (aka ActiveMQ Minion payload deserialization), leading to remote code execution for any authenticated channel user regardless of its assigned permissions."
    },
    {
      "lang": "es",
      "value": "Se detect\u00f3 un problema en OpenNMS Horizon versiones anteriores a 26.0.1 y Meridian versiones anteriores a 2018.1.19 y versiones 2019 anteriores a 2019.1.7. La configuraci\u00f3n del canal ActiveMQ permiti\u00f3 la deserializaci\u00f3n arbitraria de objetos Java (tambi\u00e9n se conoce cmo deserializaci\u00f3n de la carga \u00fatil de ActiveMQ Minion), conllevando a una ejecuci\u00f3n de c\u00f3digo remota para cualquier usuario del canal autenticado, sin importar sus permisos asignados."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
          "baseScore": 6.5,
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "SINGLE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL"
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.0,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-502"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:opennms:opennms_horizon:*:*:*:*:*:*:*:*",
              "versionEndExcluding": "26.1.0",
              "matchCriteriaId": "C5C90319-F2D3-420A-8A20-6F31691339C7"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:opennms:opennms_meridian:*:*:*:*:*:*:*:*",
              "versionEndExcluding": "2018.1.19",
              "matchCriteriaId": "DC5C193A-1194-41C8-AE5D-4E2F6E3984D7"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:opennms:opennms_meridian:*:*:*:*:*:*:*:*",
              "versionStartIncluding": "2019",
              "versionEndExcluding": "2019.1.7",
              "matchCriteriaId": "C95DA0CC-9548-40FE-8806-AF54A51B442A"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://github.com/OpenNMS/opennms/releases/tag/opennms-26.0.1-1",
      "source": "cve@mitre.org",
      "tags": [
        "Release Notes"
      ]
    },
    {
      "url": "https://issues.opennms.org/browse/NMS-12673",
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://www.opennms.com/en/blog/2020-04-29-opennms-horizon-26-0-1-luchador-released/",
      "source": "cve@mitre.org",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://www.opennms.com/en/blog/2020-04-29-opennms-meridian-2018-1-18-wildfire-released/",
      "source": "cve@mitre.org",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://www.opennms.com/en/blog/2020-04-29-opennms-meridian-2019-1-6-europa-released/",
      "source": "cve@mitre.org",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://github.com/OpenNMS/opennms/releases/tag/opennms-26.0.1-1",
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes"
      ]
    },
    {
      "url": "https://issues.opennms.org/browse/NMS-12673",
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://www.opennms.com/en/blog/2020-04-29-opennms-horizon-26-0-1-luchador-released/",
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://www.opennms.com/en/blog/2020-04-29-opennms-meridian-2018-1-18-wildfire-released/",
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://www.opennms.com/en/blog/2020-04-29-opennms-meridian-2019-1-6-europa-released/",
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ]
    }
  ]
}