admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2021/CVE-2021-200xx/CVE-2021-20050.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

327 lines
9.9 KiB
JSON
Raw Blame History

{
"id": "CVE-2021-20050",
"sourceIdentifier": "PSIRT@sonicwall.com",
"published": "2021-12-23T02:15:06.637",
"lastModified": "2022-10-21T20:03:35.393",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "An Improper Access Control Vulnerability in the SMA100 series leads to multiple restricted management APIs being accessible without a user login, potentially exposing configuration meta-data."
},
{
"lang": "es",
"value": "Una vulnerabilidad de control de acceso inapropiado en la serie SMA100 conlleva a que varias API de administraci\u00f3n restringidas sean accesibles sin un inicio de sesi\u00f3n de usuario, exponiendo potencialmente los metadatos de configuraci\u00f3n"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
},
{
"source": "PSIRT@sonicwall.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-284"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_100_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.0.0",
"matchCriteriaId": "C1A02AA5-1A61-429B-B0B3-898636C4B563"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_100_firmware:10.2.0.8-37sv:*:*:*:*:*:*:*",
"matchCriteriaId": "87A26093-E966-4EBA-AA58-2C98499B9165"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_100_firmware:10.2.1.2-24sv:*:*:*:*:*:*:*",
"matchCriteriaId": "5575D431-4FF7-4717-9DA8-4DBD1EF49BB1"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sonicwall:sma100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8E4A2B7B-40F5-4AE0-ACC7-E94B82435DBA"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_200_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.0.0",
"matchCriteriaId": "903AAB55-2325-44BA-ADA9-69AAEE9A1AF9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_200_firmware:10.2.0.8-37sv:*:*:*:*:*:*:*",
"matchCriteriaId": "4185C028-6A07-4A92-8380-9AA3953D2CFD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_200_firmware:10.2.1.2-24sv:*:*:*:*:*:*:*",
"matchCriteriaId": "01134E66-F1FD-477B-AD44-FDEE8368BE18"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sonicwall:sma200:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F4AE2DFC-D7C3-40B8-B3DD-B65F7BB5D8C3"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.0.0",
"matchCriteriaId": "F4892669-DD8A-4A28-B6AA-632A8DA861AC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_210_firmware:10.2.0.8-37sv:*:*:*:*:*:*:*",
"matchCriteriaId": "E62EEC93-6F52-4DDB-95F0-D5736391D64C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_210_firmware:10.2.1.2-24sv:*:*:*:*:*:*:*",
"matchCriteriaId": "B38AAB98-7668-4F34-8D5F-9933422F12DD"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sonicwall:sma210:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E069FF32-C6B6-4EB3-B6E4-CEF6A6C4257D"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_400_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.0.0",
"matchCriteriaId": "F9AC3454-D403-4989-81F3-9DD7608967AA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_400_firmware:10.2.0.8-37sv:*:*:*:*:*:*:*",
"matchCriteriaId": "9BE21589-3BEC-4245-9939-CF50DE70B12A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_400_firmware:10.2.1.2-24sv:*:*:*:*:*:*:*",
"matchCriteriaId": "54946A90-09AC-4387-BACB-883AE70FD5A7"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sonicwall:sma400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8A0EF9C5-685E-49A4-ABFE-302781111753"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.0.0",
"matchCriteriaId": "42AE0158-515A-4565-B814-27AEAD941304"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_410_firmware:10.2.0.8-37sv:*:*:*:*:*:*:*",
"matchCriteriaId": "53698BD3-43B6-4EC4-8847-E6ED9A3CB6F6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_410_firmware:10.2.1.2-24sv:*:*:*:*:*:*:*",
"matchCriteriaId": "9F1FA3D8-C44A-4F33-B35D-AADF8C4E45DF"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sonicwall:sma410:-:*:*:*:*:*:*:*",
"matchCriteriaId": "47C0EBD9-B4BA-4E45-8BE3-3B6C60BF0FC1"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.0.0.0",
"matchCriteriaId": "4AE054F5-87E5-4DF5-9CD8-BF39428A092F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_500v_firmware:10.2.0.8-37sv:*:*:*:*:*:*:*",
"matchCriteriaId": "379F7CA2-8914-4710-AE6B-D2833605D4B8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sonicwall:sma_500v_firmware:10.2.1.2-24sv:*:*:*:*:*:*:*",
"matchCriteriaId": "9395563D-9071-4CE2-BAEA-D6854F4AD961"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sonicwall:sma500v:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8FF52AAE-592C-4472-866C-7776ADBA5E93"
}
]
}
]
}
],
"references": [
{
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0031",
"source": "PSIRT@sonicwall.com",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink