CVE-2022-39267 Brokercap Bifrost vulnerable to authentication bypass for admin and monitor user groups

2022-10-1900:00:00

CWE-287

GitHub_M

www.cve.org

bifrost

middleware

authentication bypass

vulnerable

admin user

monitor user

patched

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

Bifrost is a heterogeneous middleware that synchronizes MySQL, MariaDB to Redis, MongoDB, ClickHouse, MySQL and other services for production environments. Versions prior to 1.8.8-release are subject to authentication bypass in the admin and monitor user groups by deleting the X-Requested-With: XMLHttpRequest field in the request header. This issue has been patched in 1.8.8-release. There are no known workarounds.

CNA Affected

[
  {
    "vendor": "brokercap",
    "product": "Bifrost",
    "versions": [
      {
        "version": "< 1.8.8-release",
        "status": "affected"
      }
    ]
  }
]