CVE-2023-29215 - OpenCVE

In Apache Linkis <=1.3.1, due to the lack of effective filtering of parameters, an attacker configuring malicious Mysql JDBC parameters in JDBC EengineConn Module will trigger a deserialization vulnerability and eventually lead to remote code execution. Therefore, the parameters in the Mysql JDBC URL should be blacklisted. Versions of Apache Linkis <= 1.3.0 will be affected. We recommend users upgrade the version of Linkis to version 1.3.2.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Apache	Linkis

Configuration 1 [-]

cpe:2.3:a:apache:linkis:*:*:*:*:*:*:*:*

References

Link	Resource
http://www.openwall.com/lists/oss-security/2023/04/10/4	Mailing List Third Party Advisory
https://lists.apache.org/thread/o682wz1ggq491ybvjwokxvcdtnzo76ls	Mailing List Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: apache

Published: 2023-04-10T07:35:23.690Z

Updated: 2023-04-10T07:35:23.690Z

Reserved: 2023-04-03T14:49:09.555Z

Link: CVE-2023-29215

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-04-10T08:15:07.237

Modified: 2023-04-13T18:16:08.277

Link: CVE-2023-29215

JSON object: View

Redhat Information

No data.

CWE

CWE-502

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-29215", "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "state": "PUBLISHED", "assignerShortName": "apache", "dateReserved": "2023-04-03T14:49:09.555Z", "datePublished": "2023-04-10T07:35:23.690Z", "dateUpdated": "2023-04-10T07:35:23.690Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Apache Linkis", "vendor": "Apache Software Foundation", "versions": [{"lessThanOrEqual": "1.3.1", "status": "affected", "version": "0", "versionType": "maven"}]}], "credits": [{"lang": "en", "type": "reporter", "value": "sw0rd1ight"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "In Apache Linkis <=1.3.1, due to the lack of effective filtering\nof parameters, an attacker configuring malicious Mysql JDBC parameters in JDBC EengineConn Module will trigger a\ndeserialization vulnerability and eventually lead to remote code execution. Therefore, the parameters in the Mysql JDBC URL should be blacklisted. Versions of Apache Linkis <= 1.3.0 will be affected.<br>We recommend users upgrade the version of Linkis to version 1.3.2.\n\n<br>"}], "value": "In Apache Linkis <=1.3.1, due to the lack of effective filtering\nof parameters, an attacker configuring malicious Mysql JDBC parameters in JDBC EengineConn Module will trigger a\ndeserialization vulnerability and eventually lead to remote code execution. Therefore, the parameters in the Mysql JDBC URL should be blacklisted. Versions of Apache Linkis <= 1.3.0 will be affected.\nWe recommend users upgrade the version of Linkis to version 1.3.2.\n\n\n"}], "metrics": [{"other": {"content": {"text": "important"}, "type": "Textual description of severity"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-502", "description": "CWE-502 Deserialization of Untrusted Data", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache", "dateUpdated": "2023-04-10T07:35:23.690Z"}, "references": [{"tags": ["vendor-advisory", "mailing-list"], "url": "https://lists.apache.org/thread/o682wz1ggq491ybvjwokxvcdtnzo76ls"}, {"url": "http://www.openwall.com/lists/oss-security/2023/04/10/4"}], "source": {"discovery": "EXTERNAL"}, "title": "Apache Linkis JDBC EngineCon has a deserialization command execution", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}