Lucene search

RedhatVULNRICHMENT:CVE-2023-4456

HistoryAug 21, 2023 - 3:19 p.m.

CVE-2023-4456 Openshift-logging: lokistack authorisation is cached too broadly

2023-08-2115:19:22

CWE-1220

redhat

github.com

openshift-logging

lokistack

authorisation

caching

vulnerability

CVSS3

5.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

47.8%

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

A flaw was found in openshift-logging LokiStack. The key used for caching is just the token, which is too broad. This issue allows a user with a token valid for one action to execute other actions as long as the authorization allowing the original action is still cached.

References

access.redhat.com/errata/RHSA-2023:4933

access.redhat.com/errata/RHSA-2023:5095

access.redhat.com/errata/RHSA-2023:5096

access.redhat.com/security/cve/CVE-2023-4456

bugzilla.redhat.com/show_bug.cgi?id=2233087

CVSS3

5.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

47.8%

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Related for VULNRICHMENT:CVE-2023-4456