CVE-2017-12361

Severity Score

4.0

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability in Cisco Jabber for Windows could allow an unauthenticated, local attacker to access sensitive communications made by the Jabber client. An attacker could exploit this vulnerability to gain information to conduct additional attacks. The vulnerability is due to the way Cisco Jabber for Windows handles random number generation for file folders. An attacker could exploit the vulnerability by fixing the random number data used to establish Secure Sockets Layer (SSL) connections between clients. An exploit could allow the attacker to decrypt secure communications made by the Cisco Jabber for Windows client. Cisco Bug IDs: CSCve44806.

Una vulnerabilidad en Cisco Jabber para Windows podría permitir que un atacante local sin autenticar acceda a comunicaciones sensibles realizadas por el cliente Jabber. Un atacante podría explotar esta vulnerabilidad para obtener información y realizar ataques adicionales. La vulnerabilidad se debe a la forma en la que Cisco Jabber para Windows gestiona la generación aleatoria de números para las carpetas de archivos. Un atacante podría explotar la vulnerabilidad corrigiendo los datos de números aleatorios empleados para establecer conexiones SSL (Secure Sockets Layer) entre clientes. Un exploit podría permitir que el atacante descodifique comunicaciones seguras realizadas por el cliente Cisco Jabber para Windows. Cisco Bug IDs: CSCve44806.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-08-03 CVE Reserved
2017-11-30 CVE Published
2023-06-02 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CWE-330: Use of Insufficiently Random Values

CAPEC

References (3)

URL	Tag	Source
http://www.securityfocus.com/bid/101994	Third Party Advisory
http://www.securitytracker.com/id/1039915	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-jabber2	2019-10-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"		Jabber Search vendor "Cisco" for product "Jabber"				11.8\(0\) Search vendor "Cisco" for product "Jabber" and version "11.8\(0\)"		windows		Affected
Cisco Search vendor "Cisco"		Jabber Search vendor "Cisco" for product "Jabber"				11.8\(1\) Search vendor "Cisco" for product "Jabber" and version "11.8\(1\)"		windows		Affected
Cisco Search vendor "Cisco"		Jabber Search vendor "Cisco" for product "Jabber"				11.8\(2\) Search vendor "Cisco" for product "Jabber" and version "11.8\(2\)"		windows		Affected
Cisco Search vendor "Cisco"		Jabber Search vendor "Cisco" for product "Jabber"				11.8\(3\) Search vendor "Cisco" for product "Jabber" and version "11.8\(3\)"		windows		Affected