CVE-2016-0489
published 2016-01-21CVE-2016-0489: Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Manager Grid Control 12.4.0.2 and 12.5.0.2 allows remote…
PriorityP355medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EPSS
54.78%
98.9th percentile
Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Manager Grid Control 12.4.0.2 and 12.5.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Test Manager for Web Apps. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that this is a directory traversal vulnerability in the ActionServlet servlet, which allows remote authenticated users to upload and execute arbitrary files via directory traversal sequences in the tempfilename parameter in a ReportImage action.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oracle | application_testing_suite | — | — |
| oracle | application_testing_suite | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2015-7538 jenkins: CSRF protection ineffective (SECURITY-233)
bugzilla·2015-12-15·CVSS 8.8
CVE-2015-7538 [HIGH] CVE-2015-7538 jenkins: CSRF protection ineffective (SECURITY-233)
CVE-2015-7538 jenkins: CSRF protection ineffective (SECURITY-233)
Malicious users were able to circumvent CSRF protection on any URL by sending specially crafted POST requests. This could allow unprivileged attackers to circumvent CSRF protection.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-12-09
Discussion:
Created jenkins tracking bugs for this issue:
Affects: fedora-all [bug 1291799]
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/errata/RHSA-2016:0070
---
This issue has been addressed in the following products:
Red Hat OpenShift Enterprise 2.2
Via RHSA-2016:0489 https://rhn.redhat.com/errata/RHSA-2016-0489.html
Bugzilla
CVE-2015-5318 jenkins: Public value used for CSRF protection salt (SECURITY-169)
bugzilla·2015-11-16·CVSS 6.8
CVE-2015-5318 [MEDIUM] CVE-2015-5318 jenkins: Public value used for CSRF protection salt (SECURITY-169)
CVE-2015-5318 jenkins: Public value used for CSRF protection salt (SECURITY-169)
The following flaw was found in Jenkins:
The salt used to generate the CSRF protection tokens was a publicly accessible value, allowing malicious users to circumvent CSRF protection by generating the correct token.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11
Discussion:
Fixed in Fedora in:
jenkins-1.609.3-3.fc22
jenkins-1.625.2-2.fc23
jenkins-1.625.2-2.fc24
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/errata/RHSA-2016:0070
---
This issue has been addressed in the following products:
Red Hat OpenShift Enterprise 2.2
Via RHSA-2016:0489 h
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.htmlhttp://www.securityfocus.com/bid/81184http://www.securitytracker.com/id/1034734http://www.zerodayinitiative.com/advisories/ZDI-16-038http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.htmlhttp://www.securityfocus.com/bid/81184http://www.securitytracker.com/id/1034734http://www.zerodayinitiative.com/advisories/ZDI-16-038
2016-01-21
Published