Lucene search

GoogleOSV:GHSA-RX76-XW35-6RH8

HistoryJan 31, 2023 - 12:30 p.m.

Apache Linkis vulnerable to Exposure of Sensitive Information

2023-01-3112:30:24

Google

osv.dev

apache linkis

sensitive information exposure

mysql connector/j

local file read

rogue mysql server

jdbc parameter

blacklist

version 1.3.0

version 1.3.1

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

18.6%

JSON

In Apache Linkis <=1.3.0 when used with the MySQL Connector/J, an authenticated attacker could read arbitrary local file by connecting a rogue mysql server, By adding allowLoadLocalInfile to true in the jdbc parameter. Therefore, the parameters in the jdbc url should be blacklisted. Versions of Apache Linkis <= 1.3.0 will be affected. We recommend users upgrade the version of Linkis to version 1.3.1

References

github.com/apache/linkis

lists.apache.org/thread/hwq9ytq6y1kdh9lz5znptkcrdll9x85h

nvd.nist.gov/vuln/detail/CVE-2022-44644

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

18.6%

JSON

Related for OSV:GHSA-RX76-XW35-6RH8