CVE-2023-29216 - OpenCVE

In Apache Linkis <=1.3.1, because the parameters are not effectively filtered, the attacker uses the MySQL data source and malicious parameters to configure a new data source to trigger a deserialization vulnerability, eventually leading to remote code execution. Versions of Apache Linkis <= 1.3.0 will be affected. We recommend users upgrade the version of Linkis to version 1.3.2.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Apache	Linkis

Configuration 1 [-]

cpe:2.3:a:apache:linkis:*:*:*:*:*:*:*:*

References

Link	Resource
http://www.openwall.com/lists/oss-security/2023/04/10/5	Mailing List Third Party Advisory
https://lists.apache.org/thread/18vv0m32oy51nzk8tbz13qdl5569y55l	Mailing List Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: apache

Published: 2023-04-10T07:37:29.383Z

Updated: 2023-04-10T07:37:29.383Z

Reserved: 2023-04-03T15:04:14.339Z

Link: CVE-2023-29216

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-04-10T08:15:07.290

Modified: 2023-04-13T18:16:11.797

Link: CVE-2023-29216

JSON object: View

Redhat Information

No data.

CWE

CWE-502

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-29216", "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "state": "PUBLISHED", "assignerShortName": "apache", "dateReserved": "2023-04-03T15:04:14.339Z", "datePublished": "2023-04-10T07:37:29.383Z", "dateUpdated": "2023-04-10T07:37:29.383Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Apache Linkis", "vendor": "Apache Software Foundation", "versions": [{"lessThanOrEqual": "1.3.1", "status": "affected", "version": "0", "versionType": "maven"}]}], "credits": [{"lang": "en", "type": "reporter", "value": "sw0rd1ight"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\nIn Apache Linkis <=1.3.1, because the parameters are not\neffectively filtered, the attacker uses the MySQL data source and malicious parameters to\nconfigure a new data source to trigger a deserialization vulnerability, eventually leading to\nremote code execution.<br> Versions of Apache Linkis <= 1.3.0 will be affected.<br>We recommend users upgrade the version of Linkis to version 1.3.2.\n\n<br>"}], "value": "\nIn Apache Linkis <=1.3.1, because the parameters are not\neffectively filtered, the attacker uses the MySQL data source and malicious parameters to\nconfigure a new data source to trigger a deserialization vulnerability, eventually leading to\nremote code execution.\n Versions of Apache Linkis <= 1.3.0 will be affected.\nWe recommend users upgrade the version of Linkis to version 1.3.2.\n\n\n"}], "metrics": [{"other": {"content": {"text": "important"}, "type": "Textual description of severity"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-502", "description": "CWE-502 Deserialization of Untrusted Data", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache", "dateUpdated": "2023-04-10T07:37:29.383Z"}, "references": [{"tags": ["vendor-advisory", "mailing-list"], "url": "https://lists.apache.org/thread/18vv0m32oy51nzk8tbz13qdl5569y55l"}, {"url": "http://www.openwall.com/lists/oss-security/2023/04/10/5"}], "source": {"discovery": "EXTERNAL"}, "title": "Apache Linkis DatasourceManager module has a deserialization command execution", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}