Vulnerability CVE-2014-4769 - CERT Civis.Net

Vulnerability Name:

CVE-2014-4769 (CCN-94836)

Assigned:

2014-10-31

Published:

2014-10-31

Updated:

2019-09-30

Summary:

IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x through 7.0.0.8 allows remote authenticated users to read arbitrary files or send TCP requests to intranet servers via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

CWE-611: Improper Restriction of XML External Entity Reference ('XXE')

CVSS v3 Severity:

3.5 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N)
3.0 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N)
3.0 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2014-4769

Source: AIXAPAR
Type: UNKNOWN
JR49897

Source: AIXAPAR
Type: UNKNOWN
JR50553

Source: CONFIRM
Type: Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21685464

Source: CCN
Type: IBM Security Bulletin 1685464
Multiple Security vulnerabilities found in WebSphere Commerce XML External Entity (XXE) Processing (CVE-2014-4834, CVE-2014-4769 )

Source: BID
Type: UNKNOWN
70872

Source: CCN
Type: BID-70872
IBM WebSphere Commerce CVE-2014-4769 XML External Entity Information Disclosure Vulnerability

Source: XF
Type: UNKNOWN
ibm-websphere-cve20144769-info-disc(94836)

Source: XF
Type: UNKNOWN
ibm-websphere-cve20144769-info-disc(94836)

Vulnerable Configuration:

Configuration 1:

cpe:/a:ibm:websphere_commerce:6.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.9:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.10:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:6.0.0.11:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.8:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:ibm:websphere_commerce:6.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_commerce:7.0.0.0:*:*:*:*:*:*:*

Denotes that component is vulnerable