Vulnerability CVE-2014-3005

Vulnerability Name:

CVE-2014-3005 (CCN-93861)

Assigned:

2014-06-17

Published:

2014-06-17

Updated:

2018-02-21

Summary:

XML external entity (XXE) vulnerability in Zabbix 1.8.x before 1.8.21rc1, 2.0.x before 2.0.13rc1, 2.2.x before 2.2.5rc1, and 2.3.x before 2.3.2 allows remote attackers to read arbitrary files or potentially execute arbitrary code via a crafted DTD in an XML request.

CVSS v3 Severity:

9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

CWE-611

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2014-3005

Source: FEDORA
Type: Third Party Advisory
FEDORA-2014-7594

Source: FEDORA
Type: Third Party Advisory
FEDORA-2014-7603

Source: CCN
Type: Full Disclosure Mailing List: Tue 17 Jun 2014
[CVE-2014-3005]Zabbix 1.8.x-2.2.x Local File Inclusion via XXE Attack

Source: FULLDISC
Type: Mailing List, Third Party Advisory
20140617 [CVE-2014-3005]Zabbix 1.8.x-2.2.x Local File Inclusion via XXE Attack

Source: BID
Type: Third Party Advisory, VDB Entry
68075

Source: CCN
Type: BID-68075
Zabbix CVE-2014-3005 XML External Entity Injection Vulnerability

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1110496

Source: XF
Type: UNKNOWN
zabbix-cve20143005-info-disc(93861)

Source: CCN
Type: ZBX-8151
Zabbix 1.8.x-2.2.x Local File Inclusion via XXE Attack

Source: CONFIRM
Type: Exploit, Patch, Vendor Advisory
https://support.zabbix.com/browse/ZBX-8151

Source: MISC
Type: Exploit, Third Party Advisory
https://web.archive.org/web/20140622034155/http://www.pnigos.com:80/?p=273

Vulnerable Configuration:

Configuration 1:

cpe:/a:zabbix:zabbix:1.8:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.1:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.2:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.3:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.4:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.5:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.6:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.7:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.8:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.9:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.10:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.11:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.12:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.13:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.14:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.15:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.16:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.17:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.18:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.19:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:1.8.20:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.0:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.1:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.2:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.3:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.4:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.5:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.6:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.7:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.8:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.9:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.10:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.11:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.0.12:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.2.0:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.2.1:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.2.2:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.2.3:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.2.4:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.3.0:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.3.1:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:fedoraproject:fedora:19:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:20:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:zabbix:zabbix:2.0.1:*:*:*:*:*:*:*

OR cpe:/a:zabbix:zabbix:2.2.1:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.bionic:def:201430050000000	V	CVE-2014-3005 on Ubuntu 18.04 LTS (bionic) - medium.	2018-02-01
oval:com.ubuntu.artful:def:20143005000	V	CVE-2014-3005 on Ubuntu 17.10 (artful) - medium.	2018-02-01
oval:com.ubuntu.trusty:def:20143005000	V	CVE-2014-3005 on Ubuntu 14.04 LTS (trusty) - medium.	2018-02-01
oval:com.ubuntu.xenial:def:201430050000000	V	CVE-2014-3005 on Ubuntu 16.04 LTS (xenial) - medium.	2018-02-01
oval:com.ubuntu.bionic:def:20143005000	V	CVE-2014-3005 on Ubuntu 18.04 LTS (bionic) - medium.	2018-02-01
oval:com.ubuntu.xenial:def:20143005000	V	CVE-2014-3005 on Ubuntu 16.04 LTS (xenial) - medium.	2018-02-01
oval:com.ubuntu.disco:def:201430050000000	V	CVE-2014-3005 on Ubuntu 19.04 (disco) - medium.	2018-02-01
oval:com.ubuntu.cosmic:def:20143005000	V	CVE-2014-3005 on Ubuntu 18.10 (cosmic) - medium.	2018-02-01
oval:com.ubuntu.cosmic:def:201430050000000	V	CVE-2014-3005 on Ubuntu 18.10 (cosmic) - medium.	2018-02-01
oval:com.ubuntu.precise:def:20143005000	V	CVE-2014-3005 on Ubuntu 12.04 LTS (precise) - medium.	2014-06-20

BACK