CVE-2019-11288

Published: Jan 27, 2020Modified: Nov 21, 2024

7.0

Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.0 / Impact: 5.9

Source: NVD

Description

In Pivotal tc Server, 3.x versions prior to 3.2.19 and 4.x versions prior to 4.0.10, and Pivotal tc Runtimes, 7.x versions prior to 7.0.99.B, 8.x versions prior to 8.5.47.A, and 9.x versions prior to 9.0.27.A, when a tc Runtime instance is configured with the JMX Socket Listener, a local attacker without access to the tc Runtime process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the tc Runtime instance.

Affected (5)

Products: Pivotal: Tc Runtimes, Tc Server

Pivotal

2 products

Tc Runtimes

Tc Server

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Pivotal Tc Runtimes	From 7.0.70.b to 7.0.99.b
Pivotal Tc Runtimes	From 8.5.4.b to 8.5.47.a
Pivotal Tc Runtimes	From 9.0.6.b to 9.0.27.a
Pivotal Tc Server	From 3.0.0 to 3.2.19
Pivotal Tc Server	From 4.0.0 to 4.0.10

Related CWEs

CWE-269

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (2)

https://pivotal.io/security/cve-2019-11288

Source: security@pivotal.io

Vendor Advisory

https://pivotal.io/security/cve-2019-11288

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.