CVE-2019-12619

A vulnerability in the web interface for Cisco SD-WAN Solution vManage could allow an authenticated, remote attacker to impact the integrity of an affected system by executing arbitrary SQL queries. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending crafted input that includes SQL statements to an affected system. A successful exploit could allow the attacker to modify entries in some database tables, affecting the integrity of the data.

CVSS v3 6.5 MEDIUM
CVSS v2.0 4.0 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:N/I:P/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200122-sdwan-sqlinj	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:cisco:sd-wan_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:vedge-100:-:::::::*
	cpe:2.3:h:cisco:vedge-1000:-:::::::*
	cpe:2.3:h:cisco:vedge-100b:-:::::::*
	cpe:2.3:h:cisco:vedge-2000:-:::::::*
	cpe:2.3:h:cisco:vedge-5000:-:::::::*
	cpe:2.3:h:cisco:vedge_100m:-:::::::*
	cpe:2.3:h:cisco:vedge_100wm:-:::::::*

History

No history.

Information

Published : 2020-01-26 05:15

Updated : 2023-12-10 13:13

NVD link : CVE-2019-12619

Mitre link : CVE-2019-12619

CVE.ORG link : CVE-2019-12619

JSON object : View

Products Affected

cisco

vedge-100
vedge-2000
vedge_100m
vedge_100wm
vedge-1000
vedge-5000
sd-wan_firmware
vedge-100b

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2019-12619", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Secondary", "source": "ykramarz@cisco.com", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 6.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 3.1}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2020-01-26T05:15:10.817", "references": [{"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200122-sdwan-sqlinj", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the web interface for Cisco SD-WAN Solution vManage could allow an authenticated, remote attacker to impact the integrity of an affected system by executing arbitrary SQL queries. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending crafted input that includes SQL statements to an affected system. A successful exploit could allow the attacker to modify entries in some database tables, affecting the integrity of the data."}, {"lang": "es", "value": "Una vulnerabilidad en la interfaz web para Cisco SD-WAN Solution vManage, podr\u00eda permitir a un atacante remoto autenticado impactar la integridad de un sistema afectado mediante una ejecuci\u00f3n de consultas SQL arbitrarias. La vulnerabilidad es debido a una comprobaci\u00f3n insuficiente de las entradas suministradas por el usuario. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de entradas dise\u00f1adas que incluyen sentencias SQL hacia un sistema afectado. Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante modificar entradas en algunas tablas de la base de datos, afectando la integridad de los datos."}], "lastModified": "2020-01-29T15:29:09.017", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD82EC9D-E6F5-42A7-A962-933D2F7E719C", "versionEndIncluding": "17.2.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:vedge-100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5D71E4AF-6E91-4493-A591-4D056D0E59C1"}, {"criteria": "cpe:2.3:h:cisco:vedge-1000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F718A859-BCDB-4DD0-819D-60ABE710F0A9"}, {"criteria": "cpe:2.3:h:cisco:vedge-100b:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "07E7851F-3E72-4677-B907-CF777EBED2FF"}, {"criteria": "cpe:2.3:h:cisco:vedge-2000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "52EEF288-492C-4CE6-A082-631005C5E711"}, {"criteria": "cpe:2.3:h:cisco:vedge-5000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C0C5E2C9-7D4B-405C-93DD-33DF265131E2"}, {"criteria": "cpe:2.3:h:cisco:vedge_100m:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "36973815-F46D-4ADA-B9DF-BCB70AC60BD3"}, {"criteria": "cpe:2.3:h:cisco:vedge_100wm:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "061A302C-8D35-4E80-93DA-916DA7E90C06"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ykramarz@cisco.com"}