Lucene search

RedhatCVE-2023-4456

HistoryAug 21, 2023 - 5:15 p.m.

CVE-2023-4456

2023-08-2117:15:50

CWE-1220

redhat

web.nvd.nist.gov

openshift-logging

lokistack

token

caching

authorization

nvd

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

47.8%

JSON

A flaw was found in openshift-logging LokiStack. The key used for caching is just the token, which is too broad. This issue allows a user with a token valid for one action to execute other actions as long as the authorization allowing the original action is still cached.

Affected configurations

Nvd

Node

redhatopenshift_logging

VendorProductVersionCPE
redhatopenshift_logging*cpe:2.3:a:redhat:openshift_logging:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
redhat	openshift_logging	*	cpe:2.3:a:redhat:openshift_logging::::::::

CNA Affected

[
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.5-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/lokistack-gateway-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v0.1.0-327",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.5::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.6-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/lokistack-gateway-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v0.1.0-326",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.6::el8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "RHOL-5.7-RHEL-8",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift-logging/lokistack-gateway-rhel8",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v0.1.0-325",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:logging:5.7::el8"
    ]
  }
]

References

access.redhat.com/errata/RHSA-2023:4933

access.redhat.com/errata/RHSA-2023:5095

access.redhat.com/errata/RHSA-2023:5096

access.redhat.com/security/cve/CVE-2023-4456

bugzilla.redhat.com/show_bug.cgi?id=2233087

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

47.8%

JSON

Related for CVE-2023-4456