CVE-2019-7727 Information

Description

In NICE Engage through 6.5 the default configuration binds an unauthenticated JMX/RMI interface to all network interfaces without restricting registration of MBeans which allows remote attackers to execute arbitrary code via the RMI protocol by using the JMX connector. The observed affected TCP port is 6338 but based on the product’s configuration a different one could be vulnerable.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

http://seclists.org/fulldisclosure/2019/Apr/4 https://redtimmysec.wordpress.com/2019/03/26/jmx-rmi-multiple-applications-rce/ https://seclists.org/bugtraq/2019/Apr/2

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8