CVE-2021-35252 - OpenCVE

Common encryption key appears to be used across all deployed instances of Serv-U FTP Server. Because of this an encrypted value that is exposed to an attacker can be simply recovered to plaintext.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Solarwinds	Serv-u

Configuration 1 [-]

cpe:2.3:a:solarwinds:serv-u:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35252
https://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-3-2_release_notes.htm
https://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35252

History

No history.

MITRE

Status: PUBLISHED

Assigner: SolarWinds

Published: 2022-12-16T00:00:00

Updated: 2024-08-04T00:33:51.290Z

Reserved: 2021-06-22T00:00:00

Link: CVE-2021-35252

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-12-16T16:15:16.297

Modified: 2023-08-03T17:15:10.670

Link: CVE-2021-35252

Redhat

No data.

{"containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Serv-U FTP Server", "vendor": "SolarWinds", "versions": [{"status": "affected", "version": "15.3.0"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "SecureWorks Disclosure Team"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Common encryption key appears to be used across all deployed instances of Serv-U FTP Server. Because of this an encrypted value that is exposed to an attacker can be simply recovered to plaintext."}], "value": "Common encryption key appears to be used across all deployed instances of Serv-U FTP Server. Because of this an encrypted value that is exposed to an attacker can be simply recovered to plaintext."}], "impacts": [{"capecId": "CAPEC-21", "descriptions": [{"lang": "en", "value": "CAPEC-21 Exploitation of Trusted Credentials"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-798", "description": "CWE-798 Use of Hard-coded Credentials", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "49f11609-934d-4621-84e6-e02e032104d6", "shortName": "SolarWinds", "dateUpdated": "2023-10-23T12:45:56.851Z"}, "references": [{"name": "https://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-3-2_release_notes.htm", "url": "https://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-3-2_release_notes.htm"}, {"name": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35252", "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35252"}, {"name": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35252", "url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35252"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "SolarWinds advises to upgrade to the latest version of Serv-U 15.3.2 once became generally available."}], "value": "SolarWinds advises to upgrade to the latest version of Serv-U 15.3.2 once became generally available."}], "source": {"discovery": "UNKNOWN"}, "title": "Common Key Vulnerability in Serv-U FTP Server", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T00:33:51.290Z"}, "title": "CVE Program Container", "references": [{"name": "https://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-3-2_release_notes.htm", "url": "https://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-3-2_release_notes.htm", "tags": ["x_transferred"]}, {"name": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35252", "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35252", "tags": ["x_transferred"]}, {"name": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35252", "url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35252", "tags": ["x_transferred"]}]}]}, "cveMetadata": {"assignerOrgId": "49f11609-934d-4621-84e6-e02e032104d6", "cveId": "CVE-2021-35252", "serial": 1, "state": "PUBLISHED", "dateUpdated": "2024-08-04T00:33:51.290Z", "dateReserved": "2021-06-22T00:00:00", "datePublished": "2022-12-16T00:00:00", "assignerShortName": "SolarWinds"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:solarwinds:serv-u:*:*:*:*:*:*:*:*", "matchCriteriaId": "849E4BD2-BA9B-4C38-91E1-95116AA12AE2", "versionEndExcluding": "15.3.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Common encryption key appears to be used across all deployed instances of Serv-U FTP Server. Because of this an encrypted value that is exposed to an attacker can be simply recovered to plaintext."}, {"lang": "es", "value": "Parece que se utiliza una clave de cifrado com\u00fan en todas las instancias implementadas del Serv-U FTP Server. Debido a esto, un valor cifrado que est\u00e1 expuesto a un atacante se puede recuperar simplemente en texto plano."}], "id": "CVE-2021-35252", "lastModified": "2023-08-03T17:15:10.670", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "psirt@solarwinds.com", "type": "Secondary"}]}, "published": "2022-12-16T16:15:16.297", "references": [{"source": "psirt@solarwinds.com", "tags": ["Third Party Advisory"], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-35252"}, {"source": "psirt@solarwinds.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-3-2_release_notes.htm"}, {"source": "psirt@solarwinds.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35252"}], "sourceIdentifier": "psirt@solarwinds.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-798"}], "source": "psirt@solarwinds.com", "type": "Secondary"}]}