CVE-2019-3712 - OpenCVE

Dell WES Wyse Device Agent versions prior to 14.1.2.9 and Dell Wyse ThinLinux HAgent versions prior to 5.4.55 00.10 contain a buffer overflow vulnerability. An unauthenticated attacker may potentially exploit this vulnerability to execute arbitrary code on the system with privileges of the FTP client by sending specially crafted input data to the affected system. The FTP code that contained the vulnerability has been removed.

No CVSS v4.0

No CVSS v3.1

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact Low

User Interaction None

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:A/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Dell	Windows Embedded Standard Wyse Device Agent Wyse Thinlinux Hagent

Configuration 1 [-]

OR	cpe:2.3:a:dell:windows_embedded_standard_wyse_device_agent::::::::
	cpe:2.3:a:dell:wyse_thinlinux_hagent::::::::

No data.

References

Link	Providers
http://www.securityfocus.com/bid/107376
https://www.dell.com/support/article/us/en/19/sln316391

History

No history.

MITRE

Status: PUBLISHED

Assigner: dell

Published: 2019-03-07T19:00:00Z

Updated: 2024-09-17T03:12:51.680Z

Reserved: 2019-01-03T00:00:00

Link: CVE-2019-3712

Vulnrichment

No data.

NVD

Status : Modified

Published: 2019-03-07T18:29:00.320

Modified: 2019-10-09T23:49:24.553

Link: CVE-2019-3712

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Wyse Device Agent", "vendor": "Dell", "versions": [{"lessThanOrEqual": "14.1.2.9", "status": "affected", "version": "unspecified", "versionType": "custom"}]}, {"product": "Wyse ThinLinux HAgent", "vendor": "Dell", "versions": [{"lessThanOrEqual": "5.4.55 00.10", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Dell would like to thank Jason Larsen of IOActive for reporting this vulnerability."}], "datePublic": "2019-02-28T00:00:00", "descriptions": [{"lang": "en", "value": "Dell WES Wyse Device Agent versions prior to 14.1.2.9 and Dell Wyse ThinLinux HAgent versions prior to 5.4.55 00.10 contain a buffer overflow vulnerability. An unauthenticated attacker may potentially exploit this vulnerability to execute arbitrary code on the system with privileges of the FTP client by sending specially crafted input data to the affected system. The FTP code that contained the vulnerability has been removed."}], "metrics": [{"cvssV3_0": {"attackComplexity": "HIGH", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "LOW", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L", "version": "3.0"}}], "problemTypes": [{"descriptions": [{"description": "buffer overflow vulnerability", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-03-14T09:57:01", "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "shortName": "dell"}, "references": [{"name": "107376", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/107376"}, {"tags": ["x_refsource_MISC"], "url": "https://www.dell.com/support/article/us/en/19/sln316391"}], "source": {"discovery": "UNKNOWN"}, "title": "DSA-2019-039: Dell Wyse Device Agent Buffer Overflow Vulnerability", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security_alert@emc.com", "DATE_PUBLIC": "2019-02-28T17:00:00.000Z", "ID": "CVE-2019-3712", "STATE": "PUBLIC", "TITLE": "DSA-2019-039: Dell Wyse Device Agent Buffer Overflow Vulnerability"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Wyse Device Agent", "version": {"version_data": [{"affected": "<=", "version_affected": "<=", "version_value": "14.1.2.9"}]}}, {"product_name": "Wyse ThinLinux HAgent", "version": {"version_data": [{"affected": "<=", "version_affected": "<=", "version_value": "5.4.55 00.10"}]}}]}, "vendor_name": "Dell"}]}}, "credit": [{"lang": "eng", "value": "Dell would like to thank Jason Larsen of IOActive for reporting this vulnerability."}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Dell WES Wyse Device Agent versions prior to 14.1.2.9 and Dell Wyse ThinLinux HAgent versions prior to 5.4.55 00.10 contain a buffer overflow vulnerability. An unauthenticated attacker may potentially exploit this vulnerability to execute arbitrary code on the system with privileges of the FTP client by sending specially crafted input data to the affected system. The FTP code that contained the vulnerability has been removed."}]}, "impact": {"cvss": {"attackComplexity": "HIGH", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "LOW", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L", "version": "3.0"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "buffer overflow vulnerability"}]}]}, "references": {"reference_data": [{"name": "107376", "refsource": "BID", "url": "http://www.securityfocus.com/bid/107376"}, {"name": "https://www.dell.com/support/article/us/en/19/sln316391", "refsource": "MISC", "url": "https://www.dell.com/support/article/us/en/19/sln316391"}]}, "source": {"discovery": "UNKNOWN"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T19:19:18.239Z"}, "title": "CVE Program Container", "references": [{"name": "107376", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/107376"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.dell.com/support/article/us/en/19/sln316391"}]}]}, "cveMetadata": {"assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "assignerShortName": "dell", "cveId": "CVE-2019-3712", "datePublished": "2019-03-07T19:00:00Z", "dateReserved": "2019-01-03T00:00:00", "dateUpdated": "2024-09-17T03:12:51.680Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:dell:windows_embedded_standard_wyse_device_agent:*:*:*:*:*:*:*:*", "matchCriteriaId": "386F3789-804C-4E9C-BF93-08C22F645EE1", "versionEndExcluding": "14.1.2.9", "vulnerable": true}, {"criteria": "cpe:2.3:a:dell:wyse_thinlinux_hagent:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FBB9F06-1067-4C57-B47C-167A7F9F4B5E", "versionEndExcluding": "5.4.55_00.10", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Dell WES Wyse Device Agent versions prior to 14.1.2.9 and Dell Wyse ThinLinux HAgent versions prior to 5.4.55 00.10 contain a buffer overflow vulnerability. An unauthenticated attacker may potentially exploit this vulnerability to execute arbitrary code on the system with privileges of the FTP client by sending specially crafted input data to the affected system. The FTP code that contained the vulnerability has been removed."}, {"lang": "es", "value": "Dell WES Wyse Device Agent, en versiones anteriores a la 14.1.2.9 y Dell Wyse ThinLinux HAgent, en versiones anteriores a la 5.4.55 00.10, contienen una vulnerabilidad de desbordamiento de b\u00fafer. Un atacante sin autenticar podr\u00eda explotar esta vulnerabilidad para ejecutar c\u00f3digo arbitrario en el sistema con los privilegios del cliente FTP enviando datos de entrada especialmente manipulados al sistema afectado. Se ha eliminado el c\u00f3digo FTP que conten\u00eda la vulnerabilidad."}], "id": "CVE-2019-3712", "lastModified": "2019-10-09T23:49:24.553", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 8.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 6.5, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "LOW", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L", "version": "3.0"}, "exploitabilityScore": 1.6, "impactScore": 6.0, "source": "security_alert@emc.com", "type": "Secondary"}]}, "published": "2019-03-07T18:29:00.320", "references": [{"source": "security_alert@emc.com", "tags": ["Third Party Advisory"], "url": "http://www.securityfocus.com/bid/107376"}, {"source": "security_alert@emc.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.dell.com/support/article/us/en/19/sln316391"}], "sourceIdentifier": "security_alert@emc.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}