CVE-2018-20732 : SAS Web Infrastructure Platform before 9.4M6 allows remote attackers to execute

SAS Web Infrastructure Platform before 9.4M6 allows remote attackers to execute arbitrary code via a Java deserialization variant.

Published 2019-01-17 01:29:00

Updated 2019-02-07 18:14:56

Source MITRE

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2018-20732

SAS » Web Infrastructure Platform
Versions before (<) 9.4
cpe:2.3:a:sas:web_infrastructure_platform:*:*:*:*:*:*:*:*
Matching versions
When used together with: HPE » Hp-ux Ipfilter » Version: N/A
When used together with: IBM » AIX » Version: N/A For X64
When used together with: Linux » Linux Kernel » Version: N/A For X64
When used together with: Microsoft » Windows » Version: N/A For X64
When used together with: Oracle » Solaris » Version: N/A For X64
SAS » Web Infrastructure Platform » Version: 9.4
cpe:2.3:a:sas:web_infrastructure_platform:9.4:-:*:*:*:*:*:*
Matching versions
When used together with: HPE » Hp-ux Ipfilter » Version: N/A
When used together with: IBM » AIX » Version: N/A For X64
When used together with: Linux » Linux Kernel » Version: N/A For X64
When used together with: Microsoft » Windows » Version: N/A For X64
When used together with: Oracle » Solaris » Version: N/A For X64
SAS » Web Infrastructure Platform » Version: 9.4 Update Maintenance Release 1
cpe:2.3:a:sas:web_infrastructure_platform:9.4:maintenance_release_1:*:*:*:*:*:*
Matching versions
When used together with: HPE » Hp-ux Ipfilter » Version: N/A
When used together with: IBM » AIX » Version: N/A For X64
When used together with: Linux » Linux Kernel » Version: N/A For X64
When used together with: Microsoft » Windows » Version: N/A For X64
When used together with: Oracle » Solaris » Version: N/A For X64
SAS » Web Infrastructure Platform » Version: 9.4 Update Maintenance Release 2
cpe:2.3:a:sas:web_infrastructure_platform:9.4:maintenance_release_2:*:*:*:*:*:*
Matching versions
When used together with: HPE » Hp-ux Ipfilter » Version: N/A
When used together with: IBM » AIX » Version: N/A For X64
When used together with: Linux » Linux Kernel » Version: N/A For X64
When used together with: Microsoft » Windows » Version: N/A For X64
When used together with: Oracle » Solaris » Version: N/A For X64
SAS » Web Infrastructure Platform » Version: 9.4 Update Maintenance Release 4
cpe:2.3:a:sas:web_infrastructure_platform:9.4:maintenance_release_4:*:*:*:*:*:*
Matching versions
When used together with: HPE » Hp-ux Ipfilter » Version: N/A
When used together with: IBM » AIX » Version: N/A For X64
When used together with: Linux » Linux Kernel » Version: N/A For X64
When used together with: Microsoft » Windows » Version: N/A For X64
When used together with: Oracle » Solaris » Version: N/A For X64
SAS » Web Infrastructure Platform » Version: 9.4 Update Maintenance Release 3
cpe:2.3:a:sas:web_infrastructure_platform:9.4:maintenance_release_3:*:*:*:*:*:*
Matching versions
When used together with: HPE » Hp-ux Ipfilter » Version: N/A
When used together with: IBM » AIX » Version: N/A For X64
When used together with: Linux » Linux Kernel » Version: N/A For X64
When used together with: Microsoft » Windows » Version: N/A For X64
When used together with: Oracle » Solaris » Version: N/A For X64
SAS » Web Infrastructure Platform » Version: 9.4 Update Maintenance Release 5
cpe:2.3:a:sas:web_infrastructure_platform:9.4:maintenance_release_5:*:*:*:*:*:*
Matching versions
When used together with: HPE » Hp-ux Ipfilter » Version: N/A
When used together with: IBM » AIX » Version: N/A For X64
When used together with: Linux » Linux Kernel » Version: N/A For X64
When used together with: Microsoft » Windows » Version: N/A For X64
When used together with: Oracle » Solaris » Version: N/A For X64

Exploit prediction scoring system (EPSS) score for CVE-2018-20732

EPSS FAQ

4.28%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 88 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-20732

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
9.8	CRITICAL	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2018-20732

CWE-502 Deserialization of Untrusted Data

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-20732

https://support.sas.com/kb/63/391.html

63391 - The SAS® 9.4 Web Infrastructure Platform contains a remote-code execution vulnerability
Vendor Advisory
http://www.securityfocus.com/bid/106648

SAS CVE-2018-20732 Web Infrastructure Platform Remote Code Execution Vulnerability
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2018-20732

Products affected by CVE-2018-20732

Exploit prediction scoring system (EPSS) score for CVE-2018-20732

CVSS scores for CVE-2018-20732

CWE ids for CVE-2018-20732

References for CVE-2018-20732