Lucene search

Veracode Vulnerability DatabaseVERACODE:43275

HistorySep 14, 2023 - 8:15 a.m.

Arbitrary File Read

2023-09-1408:15:09

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

openrefine

vulnerability

arbitrary file read

jdbc url

sanitization

allowloadlocalinfile

exploit

sensitive files

software

internal server files

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

36.8%

JSON

OpenRefine is vulnerable to Arbitrary File Read. The vulnerability due to improper jdbc url sanitization, which allows an attacker to set the allowLoadLocalInfile value to true by passing it through the databaseName parameter. This can be exploited to read sensitive internal server files.

CPENameOperatorVersion
openrefine - database extensionle3.7.2
openrefine - database extensionle3.7.2

CPE	Name	Operator	Version
	openrefine - database extension	le	3.7.2
	openrefine - database extension	le	3.7.2

References

github.com/advisories/GHSA-qqh2-wvmv-h72m

github.com/OpenRefine/OpenRefine/commit/2de1439f5be63d9d0e89bbacbd24fa28c8c3e29d

github.com/OpenRefine/OpenRefine/releases/tag/3.7.5

github.com/OpenRefine/OpenRefine/security/advisories/GHSA-qqh2-wvmv-h72m

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

36.8%

JSON

Related for VERACODE:43275