Vulnerability CVE-2018-12546

Vulnerability Name:

CVE-2018-12546 (CCN-156918)

Assigned:

2018-06-18

Published:

2019-02-08

Updated:

2020-08-28

Summary:

In Eclipse Mosquitto version 1.0 to 1.5.5 (inclusive) when a client publishes a retained message to a topic, then has its access to that topic revoked, the retained message will still be published to clients that subscribe to that topic in the future. In some applications this may result in clients being able cause effects that would otherwise not be allowed.

CVSS v3 Severity:

6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)
5.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-732

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2018-12546

Source: CONFIRM
Type: Exploit, Issue Tracking, Vendor Advisory
https://bugs.eclipse.org/bugs/show_bug.cgi?id=543127

Source: XF
Type: UNKNOWN
eclipse-mosquitto-cve201812546-weak-sec(156918)

Source: CCN
Type: Mosquitto Web site
An open source MQTT broker

Source: CCN
Type: Mosquitto Blog, 2019-02-08
Version 1.5.6 released

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-12546

Vulnerable Configuration:

Configuration 1:

cpe:/a:eclipse:mosquitto:*:*:*:*:*:*:*:* (Version >= 1.0 and <= 1.5.5)

Configuration CCN 1:

cpe:/a:eclipse:mosquitto:1.5.5:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201812546	V	CVE-2018-12546	2022-06-30
oval:org.opensuse.security:def:112700	P	libmosquitto1-2.0.11-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:106176	P	libmosquitto1-2.0.11-1.2 on GA media (Moderate)	2021-10-01
oval:com.ubuntu.xenial:def:2018125460000000	V	CVE-2018-12546 on Ubuntu 16.04 LTS (xenial) - medium.	2019-03-27
oval:com.ubuntu.bionic:def:201812546000	V	CVE-2018-12546 on Ubuntu 18.04 LTS (bionic) - medium.	2019-03-27
oval:com.ubuntu.disco:def:2018125460000000	V	CVE-2018-12546 on Ubuntu 19.04 (disco) - medium.	2019-03-27
oval:com.ubuntu.cosmic:def:201812546000	V	CVE-2018-12546 on Ubuntu 18.10 (cosmic) - medium.	2019-03-27
oval:com.ubuntu.cosmic:def:2018125460000000	V	CVE-2018-12546 on Ubuntu 18.10 (cosmic) - medium.	2019-03-27
oval:com.ubuntu.trusty:def:201812546000	V	CVE-2018-12546 on Ubuntu 14.04 LTS (trusty) - medium.	2019-03-27
oval:com.ubuntu.bionic:def:2018125460000000	V	CVE-2018-12546 on Ubuntu 18.04 LTS (bionic) - medium.	2019-03-27
oval:com.ubuntu.xenial:def:201812546000	V	CVE-2018-12546 on Ubuntu 16.04 LTS (xenial) - medium.	2019-03-27

BACK