Vulnerability CVE-2018-12120

Vulnerability Name:

CVE-2018-12120 (CCN-153454)

Assigned:

2018-11-28

Published:

2018-11-28

Updated:

2022-09-06

Summary:

Node.js: All versions prior to Node.js 6.15.0: Debugger port 5858 listens on any interface by default: When the debugger is enabled with `node --debug` or `node debug`, it listens to port 5858 on all interfaces by default. This may allow remote computers to attach to the debug port and evaluate arbitrary JavaScript. The default interface is now localhost. It has always been possible to start the debugger on a specific interface, such as `node --debug=localhost`. The debugger was removed in Node.js 8 and replaced with the inspector, so no versions from 8 and later are vulnerable.

CVSS v3 Severity:

8.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

9.8 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-829

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2018-12120

Source: CCN
Type: IBM Security Bulletin 0795324 (SDK for Node.js for Bluemix)
Multiple vulnerabilities affect IBM SDK for Node.js in IBM Cloud

Source: BID
Type: Third Party Advisory, VDB Entry
106040

Source: XF
Type: UNKNOWN
nodejs-cve201812120-code-exec(153454)

Source: CCN
Type: Node.js Blog, 2018-11-28
November 2018 Security Releases

Source: CONFIRM
Type: Vendor Advisory, Patch
https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/

Source: CCN
Type: IBM Security Bulletin 787619 (i)
Multiple vulnerabilities in Node.js affect IBM i

Source: CCN
Type: IBM Security Bulletin 0794537 (Rational Application Developer for WebSphere Software)
Multiple vulnerabilities in Node.js affect IBM Rational Application Developer for WebSphere Software

Source: CCN
Type: IBM Security Bulletin 869830 (Cloud Private)
Multiple Security Vulnerabilities affect IBM Cloud Private - Node.js

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-12120

Vulnerable Configuration:

Configuration 1:

cpe:/a:nodejs:node.js:*:*:*:*:lts:*:*:* (Version >= 6.0.0 and < 6.15.0)

Configuration CCN 1:

cpe:/a:nodejs:node.js:8:*:*:*:*:*:*:*

OR cpe:/a:nodejs:node.js:10:*:*:*:*:*:*:*

AND

cpe:/a:ibm:rational_application_developer:9.1:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.1.0.1:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.1.1:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:sdk:*:*:node.js:*:bluemix:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.1.1.1:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.5:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.5.0.1:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.1.1.2:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.5.0.2:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.6:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.6.1:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.5.0.3:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:rational_application_developer:9.6.1.1:*:*:*:websphere:*:*:*

OR cpe:/a:ibm:cloud_private:2.1.0:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.17.27.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_private:3.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_private:3.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:sdk:6.14.4:*:node.js:*:bluemix:*:*:*

OR cpe:/a:ibm:sdk:8.11.4:*:node.js:*:bluemix:*:*:*

OR cpe:/a:ibm:sdk:10.13.0:*:node.js:*:bluemix:*:*:*

OR cpe:/a:ibm:cloud_automation_manager:3.1.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201812120	V	CVE-2018-12120	2022-05-22
oval:org.opensuse.security:def:58113	P	Security update for apache2 (Important)	2022-01-12
oval:org.opensuse.security:def:58075	P	Security update for chrony (Moderate)	2021-12-22
oval:org.opensuse.security:def:38223	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:38065	P	Security update for OpenEXR (Moderate)	2021-12-01
oval:org.opensuse.security:def:57516	P	Security update for MozillaFirefox (Important)	2021-10-15
oval:org.opensuse.security:def:38202	P	Security update for libcroco (Moderate)	2021-09-16
oval:org.opensuse.security:def:58001	P	Security update for openexr (Important)	2021-09-02
oval:org.opensuse.security:def:57071	P	Security update for cpio (Important)	2021-08-23
oval:org.opensuse.security:def:14328	P	mutt-1.6.0-54.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14013	P	procmail-3.22-267.12 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14990	P	libexiv2-12-0.23-12.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13970	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14331	P	openslp-2.0.0-17.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14147	P	glibc-2.22-61.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14108	P	crash-7.1.8-3.9 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14284	P	libraptor2-0-2.0.10-3.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14238	P	libipa_hbac0-1.13.4-33.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13962	P	libsystemd0-228-117.12 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13991	P	openssh-7.2p2-55.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14352	P	policycoreutils-2.5-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14318	P	libz1-1.2.8-11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14129	P	emacs-24.3-19.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14060	P	xdg-utils-20140630-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14991	P	libfreebl3-3.45-58.31.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14259	P	libmusicbrainz4-2.1.5-27.79 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14145	P	git-core-2.12.3-26.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13983	P	mailman-2.1.17-1.18 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14339	P	pam_krb5-2.4.4-4.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14307	P	libvirt-3.3.0-4.28 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14081	P	apache-commons-daemon-1.0.15-6.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15012	P	libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13992	P	openvpn-2.3.8-16.6.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14969	P	libXvnc1-1.6.0-22.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14166	P	hardlink-1.0-6.38 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14126	P	e2fsprogs-1.42.11-15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14263	P	libnghttp2-14-1.7.1-1.84 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:57909	P	Security update for java-1_7_0-openjdk (Moderate)	2021-04-29
oval:org.opensuse.security:def:59871	P	Security update for MozillaFirefox (Important)	2021-03-31
oval:org.opensuse.security:def:60478	P	Security update for python (Moderate)	2021-03-16
oval:org.opensuse.security:def:39490	P	Security update for squid3 (Critical)	2020-12-30
oval:org.opensuse.security:def:38808	P	Security update for cyrus-sasl (Important)	2020-12-17
oval:org.opensuse.security:def:38002	P	mariadb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60178	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:38852	P	gnome-shell-calendar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37970	P	libtasn1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:57350	P	Security update for flash-player (Moderate)	2020-12-01
oval:org.opensuse.security:def:38787	P	qemu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38325	P	libmodplug1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39511	P	Security update for nodejs4 (Important)	2020-12-01
oval:org.opensuse.security:def:38633	P	libHX28 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38452	P	ppp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37990	P	libxml2-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60777	P	Security update for freetype2 (Important)	2020-12-01
oval:org.opensuse.security:def:59435	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:60856	P	Security update for mariadb (Low)	2020-12-01
oval:org.opensuse.security:def:56693	P	Security update for p7zip (Important)	2020-12-01
oval:org.opensuse.security:def:58194	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:37991	P	libxmltooling6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:59989	P	Security update for mailman (Important)	2020-12-01
oval:org.opensuse.security:def:57244	P	Security update for LibreOffice	2020-12-01
oval:org.opensuse.security:def:38759	P	openssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60596	P	Security update for mariadb (Low)	2020-12-01
oval:org.opensuse.security:def:39532	P	Security update for nodejs6 (Important)	2020-12-01
oval:org.opensuse.security:def:57801	P	libgypsy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39469	P	Security update for nodejs4, nodejs6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38473	P	rsync on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56670	P	Security update for exiv2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38362	P	libraptor2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60693	P	Security update for mailman (Important)	2020-12-01
oval:org.opensuse.security:def:38671	P	libgcrypt20 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:59277	P	Security update for xerces-c (Moderate)	2020-12-01
oval:org.opensuse.security:def:60906	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:56671	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:38780	P	python on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38720	P	libqt4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:58218	P	Security update for nodejs6 (Important)	2020-12-01
oval:org.opensuse.security:def:38086	P	unrar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37981	P	libvmtools0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38831	P	xorg-x11-server on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:59254	P	Security update for mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:38383	P	libtiff5-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38304	P	libipa_hbac0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38692	P	libldap-2_4-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38612	P	groff on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:59255	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:60815	P	Security update for python3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37969	P	libtag1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:59688	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:38741	P	libvirt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60935	P	Security update for nodejs6 (Important)	2020-12-01
oval:org.opensuse.security:def:56833	P	Security update for gstreamer-plugins-base (Important)	2020-12-01
oval:org.opensuse.security:def:58144	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:80853	P	Security update for nodejs6 (Important)	2019-02-14
oval:org.opensuse.security:def:84388	P	Security update for nodejs6 (Important)	2019-02-14
oval:com.ubuntu.xenial:def:2018121200000000	V	CVE-2018-12120 on Ubuntu 16.04 LTS (xenial) - medium.	2018-11-28
oval:com.ubuntu.bionic:def:201812120000	V	CVE-2018-12120 on Ubuntu 18.04 LTS (bionic) - medium.	2018-11-28
oval:com.ubuntu.cosmic:def:201812120000	V	CVE-2018-12120 on Ubuntu 18.10 (cosmic) - medium.	2018-11-28
oval:com.ubuntu.cosmic:def:2018121200000000	V	CVE-2018-12120 on Ubuntu 18.10 (cosmic) - medium.	2018-11-28
oval:com.ubuntu.trusty:def:201812120000	V	CVE-2018-12120 on Ubuntu 14.04 LTS (trusty) - medium.	2018-11-28
oval:com.ubuntu.bionic:def:2018121200000000	V	CVE-2018-12120 on Ubuntu 18.04 LTS (bionic) - medium.	2018-11-28
oval:com.ubuntu.xenial:def:201812120000	V	CVE-2018-12120 on Ubuntu 16.04 LTS (xenial) - medium.	2018-11-28

BACK