Detections
Analytics
Oracle GoldenGate for Big Data 12.3.2.1.x < 12.3.2.1.2 Apache Log4j Insecure Deserialization RCE (Jan 2019 CPU)
critical Nessus Plugin ID 133268
Language:
Synopsis
The Oracle GoldenGate for Big Data application on the remote host is affected by a remote code execution vulnerability.Description
According to its self-reported version number, the Oracle GoldenGate for Big Data application located on the remote host 12.3.2.1.x less than 12.3.2.1.2. It is, therefore, affected by a remote code execution vulnerability due to insecure deserialization of log events received by the Apache Log4j subcomponent's TCP or UDP socket server. An unauthenticated, remote attacker can exploit this to execute arbitrary code by sending a specially crafted, serialized binary payload.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Oracle GoldenGate for Big Data version 12.3.2.1.2 or later.See Also
Plugin Details
Severity: Critical
ID: 133268
File Name: oracle_goldengate_for_big_data_cpu_jan_2019.nasl
Version: 1.4
Type: local
Agent: windows, macosx, unix
Family: Misc.
Published: 1/28/2020
Updated: 4/11/2022
Configuration: Enable paranoid mode, Enable thorough checks
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 5.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2017-5645
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:oracle:goldengate_application_adapters
Required KB Items: Settings/ParanoidReport, installed_sw/Oracle GoldenGate for Big Data
Exploit Ease: No known exploits are available
Patch Publication Date: 1/15/2019
Vulnerability Publication Date: 4/17/2017
Reference Information
CVE: CVE-2017-5645
BID: 97702