CVE-2019-3816

Impact:
Important
Public Date:
2019-03-12
CWE:
CWE-200
Bugzilla:
1667070: CVE-2019-3816 openwsman: Disclosure of arbitrary files outside of the registered URIs
Openwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openwsmand daemon was set to root directory. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted HTTP request to openwsman server.

Find out more about CVE-2019-3816 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat OpenStack Platform currently only utilizes the client and python client API bindings, not the server components of openwsman. Additionally, updates for this package are received through the Red Hat Enterprise Linux repository.

Red Hat Enterprise Virtualization uses only the openwsman-python client API bindings, not the server components of openwsman.

This issue affects the versions of openwsman as shipped with Red Hat Enterprise Linux 6 and 7.

Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This has been rated as having a security impact of Important, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.

CVSS v3 metrics

CVSS3 Base Score 7.5
CVSS3 Base Metrics CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity Impact None
Availability Impact None

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 8 (openwsman) RHSA-2019:0972 2019-05-07
Red Hat Enterprise Linux 7 (openwsman) RHSA-2019:0638 2019-03-26
Red Hat Enterprise Linux 8 (openwsman) RHSA-2019:0972 2019-05-07

Affected Packages State

Platform Package State
Red Hat Virtualization 4 redhat-virtualization-host Not affected
Red Hat Enterprise Linux 6 openwsman Will not fix
OpenStack 9.0 Director for RHEL 7 openwsman Will not fix
OpenStack 8.0 Director for RHEL 7 openwsman Will not fix

Acknowledgements

Red Hat would like to thank NEC Corporation for reporting this issue.
Last Modified