Lucene search

K
ibmIBM0F175B4566A3C3CD385B0CCD649442A6030A9A23BB67E52910C9A0D236315D13
HistoryJan 16, 2024 - 3:02 p.m.

Security Bulletin: IBM Storage Ceph is vulnerable to improper authentication in Crewjam/SAML [CVE-2022-41912]

2024-01-1615:02:42
www.ibm.com
10
ibm storage
crewjam/saml
authentication
bypass
vulnerability
cve-2022-41912
ibm storage ceph 6.1
upgrade
rgw
saml responses
remote attacker

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.1

Confidence

High

EPSS

0.006

Percentile

78.0%

Summary

Crewjam/SAML is used by IBM Storage Ceph as part of RGW and in assorted other locations [CVE-2022-41912] This bulletin identifies the steps to take to address the vulnerability in Crewjam/SAML.

Vulnerability Details

**CVEID:**CVE-2022-41912 DESCRIPTION: Crewjam saml could allow a remote attacker to bypass security restrictions, caused by a flaw when processing SAML responses. By sending a specially-crafted request containing multiple Assertion elements, an attacker could exploit this vulnerability to bypass authentication.
CVSS Base score: 9.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/243617 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Storage Ceph <6.1
IBM Storage Ceph 5.3z1-z5

Remediation/Fixes

IBM strongly recommends addressing the vulnerability now.
Download the latest version of IBM Storage Ceph and upgrade to 6.1 by following instructions.

https://public.dhe.ibm.com/ibmdl/export/pub/storage/ceph/
https://www.ibm.com/docs/en/storage-ceph/6?topic=upgrading

Workarounds and Mitigations

None

Affected configurations

Vulners
Node
ibmstorage_cephMatch5.1
OR
ibmstorage_cephMatch1
OR
ibmstorage_cephMatch5
VendorProductVersionCPE
ibmstorage_ceph5.1cpe:2.3:a:ibm:storage_ceph:5.1:*:*:*:*:*:*:*
ibmstorage_ceph1cpe:2.3:a:ibm:storage_ceph:1:*:*:*:*:*:*:*
ibmstorage_ceph5cpe:2.3:a:ibm:storage_ceph:5:*:*:*:*:*:*:*

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.1

Confidence

High

EPSS

0.006

Percentile

78.0%

Related for 0F175B4566A3C3CD385B0CCD649442A6030A9A23BB67E52910C9A0D236315D13