CVE-2015-2902 - Vulnerability Details - OpenCVE

HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted certificate.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Hp	Arcsight Smartconnectors

Configuration 1 [-]

cpe:2.3:a:hp:arcsight_smartconnectors:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.kb.cert.org/vuls/id/350508
http://www.securitytracker.com/id/1034078
https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04850932

History

No history.

MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2015-11-04T02:00:00

Updated: 2024-08-06T05:32:20.642Z

Reserved: 2015-04-03T00:00:00

Link: CVE-2015-2902

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2015-11-04T03:59:00.117

Modified: 2025-04-12T10:46:40.837

Link: CVE-2015-2902

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-11-03T00:00:00", "descriptions": [{"lang": "en", "value": "HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted certificate."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-05T22:57:01", "orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc"}, "references": [{"name": "VU#350508", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/350508"}, {"name": "1034078", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1034078"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04850932"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cert@cert.org", "ID": "CVE-2015-2902", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted certificate."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "VU#350508", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/350508"}, {"name": "1034078", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1034078"}, {"name": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04850932", "refsource": "CONFIRM", "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04850932"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T05:32:20.642Z"}, "title": "CVE Program Container", "references": [{"name": "VU#350508", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/350508"}, {"name": "1034078", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1034078"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04850932"}]}]}, "cveMetadata": {"assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "assignerShortName": "certcc", "cveId": "CVE-2015-2902", "datePublished": "2015-11-04T02:00:00", "dateReserved": "2015-04-03T00:00:00", "dateUpdated": "2024-08-06T05:32:20.642Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hp:arcsight_smartconnectors:*:*:*:*:*:*:*:*", "matchCriteriaId": "6A53D8CA-8A60-42DE-B68F-30B6068A75D2", "versionEndIncluding": "7.1.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates from Logger devices, which allows man-in-the-middle attackers to spoof devices and obtain sensitive information via a crafted certificate."}, {"lang": "es", "value": "HP ArcSight SmartConnectors en versiones anteriores a 7.1.6 no verifica certificados X.509 desde dispositivos Logger, lo que permite a atacantes man-in-the-middle suplantar dispositivos y obtener informaci\u00f3n sensible a trav\u00e9s de un certificado manipulado."}], "evaluatorComment": "<a href=\"https://cwe.mitre.org/data/definitions/295.html\">CWE-295: Improper Certificate Validation</a>", "id": "CVE-2015-2902", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-11-04T03:59:00.117", "references": [{"source": "cret@cert.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/350508"}, {"source": "cret@cert.org", "url": "http://www.securitytracker.com/id/1034078"}, {"source": "cret@cert.org", "tags": ["Vendor Advisory"], "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04850932"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/350508"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1034078"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04850932"}], "sourceIdentifier": "cret@cert.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-310"}], "source": "nvd@nist.gov", "type": "Primary"}]}