vmware tanzu_application_service_for_virtual_machines 通过日志文件的信息暴露

CVE编号

CVE-2020-5414

利用情况

暂无

补丁情况

N/A

披露时间

2020-08-01

漏洞描述

VMware Tanzu Application Service for VMs (2.7.x versions prior to 2.7.19, 2.8.x versions prior to 2.8.13, and 2.9.x versions prior to 2.9.7) contains an App Autoscaler that logs the UAA admin password. This credential is redacted on VMware Tanzu Operations Manager; however, the unredacted logs are available to authenticated users of the BOSH Director. This credential would grant administrative privileges to a malicious user. The same versions of App Autoscaler also log the App Autoscaler Broker password. Prior to newer versions of Operations Manager, this credential was not redacted from logs. This credential allows a malicious user to create, delete, and modify App Autoscaler services instances. Operations Manager started redacting this credential from logs as of its versions 2.7.15, 2.8.6, and 2.9.1. Note that these logs are typically only visible to foundation administrators and operators.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
https://tanzu.vmware.com/security/cve-2020-5414

受影响软件情况

#	类型	厂商	产品	版本	影响面
1
	运行在以下环境
	应用	vmware	operations_manager	*	From (including) 2.7.0	Up to (excluding) 2.7.15
	运行在以下环境
	应用	vmware	operations_manager	*	From (including) 2.8.0	Up to (excluding) 2.8.6
	运行在以下环境
	应用	vmware	operations_manager	*	From (including) 2.9.0	Up to (excluding) 2.9.1
	运行在以下环境
	应用	vmware	tanzu_application_service_for_virtual_machines	*	From (including) 2.7.0	Up to (excluding) 2.7.19
	运行在以下环境
	应用	vmware	tanzu_application_service_for_virtual_machines	*	From (including) 2.8.0	Up to (excluding) 2.8.13
	运行在以下环境
	应用	vmware	tanzu_application_service_for_virtual_machines	*	From (including) 2.9.0	Up to (excluding) 2.9.7

CVSS3评分 5.7

• 攻击路径 网络
• 攻击复杂度 低
• 权限要求 高
• 影响范围 未更改
• 用户交互 需要
• 可用性 高
• 保密性 低
• 完整性 低

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:H

CWE-ID	漏洞类型
CWE-532	通过日志文件的信息暴露

Exp相关链接

- avd.aliyun.com