CVE-2021-29872

Published Jan 18, 2022

Last updated 3 years ago

CVSS medium 5.4

Overview

Description: IBM Cloud Pak for Automation 21.0.1 and 21.0.2 - Business Automation Studio Component is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. By sending a specially crafted HTTP request, a remote attacker could exploit this vulnerability to inject HTTP HOST header, which will allow the attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. IBM X-Force ID: 206228.
Source: psirt@us.ibm.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 5.4
Impact score: 2.7
Exploitability score: 2.3
Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Severity: MEDIUM

CVSS 3.0

Type: Secondary
Base score: 5.4
Impact score: 2.5
Exploitability score: 2.8
Vector string: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 3.5
Impact score: 2.9
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-116

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "528C3F13-9C33-499B-9DD7-BD6355794569",
            "versionEndExcluding": "21.0.2"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37D1BB9B-3517-4AE3-A5E7-F57BFACB07BC"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.2:interim_fix001:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63CCBE13-44B9-4F56-AD72-D8323D7F9621"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.2:interim_fix002:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A99616F-DA95-48B5-B7BC-5186794CE72D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.2:interim_fix003:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F85EDEAC-F9EF-43CC-A978-85048FF19852"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.2:interim_fix004:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA8EDF0D-05B1-40FA-ADFE-D771AD6EBE40"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.2:interim_fix005:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A2FEB41-01B8-4C37-9F17-69255118E50A"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.2:interim_fix006:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A188FDEC-5645-4964-AA64-8EADC78A977A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB8AD032-B625-4028-8DA4-D9B0DD602EF5",
            "versionEndExcluding": "21.0.1"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18A895F5-B552-4BA2-869A-8125995C780E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.1:interim_fix001:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "285F797E-CD76-47B5-8710-9EAF262D72B0"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.1:interim_fix002:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37DF98AA-87EE-473D-8A84-D66B707EC9FB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.1:interim_fix003:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4BCCB354-A278-49BD-9162-673E29E59685"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.1:interim_fix004:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB0A60F8-2250-402E-9087-3BE52B5CEC30"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.1:interim_fix005:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D52DC5A7-2345-45F9-A83A-2F1A8DAA9BAD"
          },
          {
            "criteria": "cpe:2.3:a:ibm:cloud_pak_for_automation:21.0.1:interim_fix006:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC4C99DA-2CAF-452B-9FFF-20B90EC61319"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References