Vulnerability Details : CVE-2017-2639
It was found that CloudForms does not verify that the server hostname matches the domain name in the certificate when using a custom CA and communicating with Red Hat Virtualization (RHEV) and OpenShift. This would allow an attacker to spoof RHEV or OpenShift systems and potentially harvest sensitive information from CloudForms.
Products affected by CVE-2017-2639
- cpe:2.3:a:redhat:cloudforms:4.5:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:cloudforms_management_engine:5.8:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-2639
0.22%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 60 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-2639
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST | |
7.5
|
HIGH | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
3.9
|
3.6
|
NIST | |
6.5
|
MEDIUM | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
2.8
|
3.6
|
Red Hat, Inc. |
CWE ids for CVE-2017-2639
-
The product does not validate, or incorrectly validates, a certificate.Assigned by:
- nvd@nist.gov (Secondary)
- secalert@redhat.com (Primary)
References for CVE-2017-2639
-
https://access.redhat.com/errata/RHSA-2017:1367
RHSA-2017:1367 - Security Advisory - Red Hat Customer PortalVendor Advisory
-
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2639
1429632 – (CVE-2017-2639) CVE-2017-2639 CloudForms: cloudforms fails to properly check certificates when communicating with RHEV and OpenShift and custom CAIssue Tracking;Vendor Advisory
-
http://www.securityfocus.com/bid/98769
Red Hat CloudForms Management Engine CVE-2017-2639 Information Disclosure VulnerabilityThird Party Advisory;VDB Entry
-
http://www.securitytracker.com/id/1038599
Red Hat CloudForms Bugs Let Remote Users Conduct Man-in-the-Middle Attacks to Spoof Servers and Obtain Authentication Information - SecurityTrackerThird Party Advisory;VDB Entry
Jump to