SES Evolution server access check bypass (CVE-2021-31222)

SES Evolution server access check bypass (CVE-2021-31222)

Advisory ID	CVE Number	Date discovered	Severity	Advisory revision
STORM-2021-024	CVE-2021-31222	04/06/2021	medium	v1

Vulnerability details

SES Evolution before 2.1.0 allows updating some parts of a security policy by leveraging access to a computer having the administration console installed.

Impacted products

Products	Severity	Detail
Stormshield Endpoint Security	medium	SES is impacted

Revisions

Version	Date	Description
v1	07/12/2021	Initial release

Stormshield Endpoint Security

CVSS v3.1 Overall Score: 5.3

Analysis	Impacted version
An attacker may trick a user connected to a machine where the SES Evolution console is installed to execute a malicious program in order to update an existing script (executed when a malicious action is detected or to determine the security policy to apply) with malicious contents. This script will eventually be used the next time changes are deployed to the environment.	SES 2.0.0 to 2.0.2

Workaround solution	Solution
There is no workaround solution.	The 2.1.0 update fixes this vulnerability.

Attack Vector	Attack Complexity	Privileges Required	User Interaction	Scope	Confidentiality Impact	Integrity Impact	Availability impact
Adjacent Network	High	None	Required	Unchanged	High	High	High

CVSS Base score: 7.1	CVSS Vector: (AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H)

Exploit Code Maturity	Remediation Level	Report Confidence
Proof of concept code	Official fix	Confirmed

CVSS Temporal score: 6.4	CVSS Vector: (AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C)

Confidentiality Requirement (CR)	Integrity Requirement (IR)	Availability Requirement (AR)
High	High	High

CVSS Environmental score: 5.3	CVSS Vector: (AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C/CR:H/IR:H/AR:H/MAV:X/MAC:X/MPR:X/MUI:X/MS:X/MC:X/MI:X/MA:X)

RSS Feed Contact Report a vulnerability Legal terms STORMSHIELD Corporate website Personal Data