CVE-2017-5999 - Vulnerability Details - OpenCVE

ReportizFlow

An issue was discovered in sysPass 2.x before 2.1, in which an algorithm was never sufficiently reviewed by cryptographers. The fact that inc/SP/Core/Crypt.class is using the MCRYPT_RIJNDAEL_256() function (the 256-bit block version of Rijndael, not AES) instead of MCRYPT_RIJNDAEL_128 (real AES) could help an attacker to create unknown havoc in the remote system.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Syspass	Syspass

Configuration 1 [-]

cpe:2.3:a:syspass:syspass:2.0:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.securityfocus.com/bid/96562
https://cxsecurity.com/issue/WLB-2017020196
https://github.com/nuxsmin/sysPass/commit/a0e2c485e53b370a7cc6d833e192c3c5bfd70e1f
https://github.com/nuxsmin/sysPass/releases/tag/2.1.0.17022601

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-03-06T06:11:00

Updated: 2024-08-05T15:18:49.391Z

Reserved: 2017-02-15T00:00:00

Link: CVE-2017-5999

Vulnrichment

No data.

NVD

Status : Modified

Published: 2017-03-06T06:59:00.287

Modified: 2024-11-21T03:28:52.160

Link: CVE-2017-5999

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2017-03-06T00:00:00", "descriptions": [{"lang": "en", "value": "An issue was discovered in sysPass 2.x before 2.1, in which an algorithm was never sufficiently reviewed by cryptographers. The fact that inc/SP/Core/Crypt.class is using the MCRYPT_RIJNDAEL_256() function (the 256-bit block version of Rijndael, not AES) instead of MCRYPT_RIJNDAEL_128 (real AES) could help an attacker to create unknown havoc in the remote system."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-03-07T10:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://cxsecurity.com/issue/WLB-2017020196"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/nuxsmin/sysPass/commit/a0e2c485e53b370a7cc6d833e192c3c5bfd70e1f"}, {"name": "96562", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/96562"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/nuxsmin/sysPass/releases/tag/2.1.0.17022601"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2017-5999", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An issue was discovered in sysPass 2.x before 2.1, in which an algorithm was never sufficiently reviewed by cryptographers. The fact that inc/SP/Core/Crypt.class is using the MCRYPT_RIJNDAEL_256() function (the 256-bit block version of Rijndael, not AES) instead of MCRYPT_RIJNDAEL_128 (real AES) could help an attacker to create unknown havoc in the remote system."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://cxsecurity.com/issue/WLB-2017020196", "refsource": "MISC", "url": "https://cxsecurity.com/issue/WLB-2017020196"}, {"name": "https://github.com/nuxsmin/sysPass/commit/a0e2c485e53b370a7cc6d833e192c3c5bfd70e1f", "refsource": "CONFIRM", "url": "https://github.com/nuxsmin/sysPass/commit/a0e2c485e53b370a7cc6d833e192c3c5bfd70e1f"}, {"name": "96562", "refsource": "BID", "url": "http://www.securityfocus.com/bid/96562"}, {"name": "https://github.com/nuxsmin/sysPass/releases/tag/2.1.0.17022601", "refsource": "CONFIRM", "url": "https://github.com/nuxsmin/sysPass/releases/tag/2.1.0.17022601"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T15:18:49.391Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://cxsecurity.com/issue/WLB-2017020196"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/nuxsmin/sysPass/commit/a0e2c485e53b370a7cc6d833e192c3c5bfd70e1f"}, {"name": "96562", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/96562"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/nuxsmin/sysPass/releases/tag/2.1.0.17022601"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-5999", "datePublished": "2017-03-06T06:11:00", "dateReserved": "2017-02-15T00:00:00", "dateUpdated": "2024-08-05T15:18:49.391Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:syspass:syspass:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "F5B10861-9CA4-4BD0-8B7E-6823ED41205C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in sysPass 2.x before 2.1, in which an algorithm was never sufficiently reviewed by cryptographers. The fact that inc/SP/Core/Crypt.class is using the MCRYPT_RIJNDAEL_256() function (the 256-bit block version of Rijndael, not AES) instead of MCRYPT_RIJNDAEL_128 (real AES) could help an attacker to create unknown havoc in the remote system."}, {"lang": "es", "value": "Se ha descubierto un problema en sysPass 2.x en versiones anteriores a 2.1, en el que un algoritmo nunca fue suficientemente revisado por cript\u00f3grafos. El hecho de que inc/SP/Core/Crypt.class est\u00e9 usando la funci\u00f3n MCRYPT_RIJNDAEL_256() (la versi\u00f3n de bloque de 256 bits de Rijndael, no AES) en lugar de MCRYPT_RIJNDAEL_128 (real AES) podr\u00eda ayudar a un atacante a crear estragos desconocidos en el sistema remoto."}], "id": "CVE-2017-5999", "lastModified": "2024-11-21T03:28:52.160", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "[email protected]", "type": "Primary"}]}, "published": "2017-03-06T06:59:00.287", "references": [{"source": "[email protected]", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/96562"}, {"source": "[email protected]", "tags": ["Third Party Advisory"], "url": "https://cxsecurity.com/issue/WLB-2017020196"}, {"source": "[email protected]", "tags": ["Patch"], "url": "https://github.com/nuxsmin/sysPass/commit/a0e2c485e53b370a7cc6d833e192c3c5bfd70e1f"}, {"source": "[email protected]", "tags": ["Patch", "Release Notes"], "url": "https://github.com/nuxsmin/sysPass/releases/tag/2.1.0.17022601"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/96562"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://cxsecurity.com/issue/WLB-2017020196"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/nuxsmin/sysPass/commit/a0e2c485e53b370a7cc6d833e192c3c5bfd70e1f"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Release Notes"], "url": "https://github.com/nuxsmin/sysPass/releases/tag/2.1.0.17022601"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-326"}], "source": "[email protected]", "type": "Primary"}]}