CVE-2021-3034
Published Mar 10, 2021
Last updated 4 years ago
Overview
- Description
- An information exposure through log file vulnerability exists in Cortex XSOAR software where the secrets configured for the SAML single sign-on (SSO) integration can be logged to the '/var/log/demisto/' server logs when testing the integration during setup. This logged information includes the private key and identity provider certificate used to configure the SAML SSO integration. This issue impacts: Cortex XSOAR 5.5.0 builds earlier than 98622; Cortex XSOAR 6.0.1 builds earlier than 830029; Cortex XSOAR 6.0.2 builds earlier than 98623; Cortex XSOAR 6.1.0 builds earlier than 848144.
- Source
- psirt@paloaltonetworks.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.1
- Impact score
- 4.2
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 3.6
- Impact score
- 4.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:N
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:5.5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "76B47510-C747-4A91-8120-CBD872DDE5F8"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:5.5.0:70066:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CCC73F19-BAEC-464E-813E-AABFB0FF1749"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:5.5.0:73387:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "829FDD7F-9F92-4425-BA03-7A916C672A1A"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:5.5.0:75211:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "01F6E4B3-7264-4B6B-A2E0-EC0C6E454FE9"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:5.5.0:78518:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BFF634F2-427F-46AF-A203-3F8F91AEB039"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:5.5.0:94592:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C1B47446-7E43-44ED-A734-4C300ED6F6CC"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E09D6E6D-586A-4034-A5ED-6669EECE4715"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.0.1:81077:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4F60A667-2802-4EE5-879D-DEF385C8A252"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FDAAC395-8A8B-4058-AEC8-450DA13E4D5E"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.0.2:90947:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5617A797-C295-4534-A8BD-DB7637FEDDA1"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.0.2:93351:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "924A87A5-6809-4D3A-B660-4F3D3E930103"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.0.2:94597:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B046FAAA-2FC4-4F69-980B-878BA24D1ACE"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.0.2:97682:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "231DF541-0D13-42DD-9392-A269999DA50C"
},
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "62F98F51-39E4-480D-8DB8-EE5AD36920FC"
}
],
"operator": "OR"
}
]
}
]