CVE-2023-39553 - OpenCVE

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server. This issue affects Apache Airflow Drill Provider: before 2.4.3. It is recommended to upgrade to a version that is not affected.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Apache	Apache-airflow-providers-apache-drill

Configuration 1 [-]

cpe:2.3:a:apache:apache-airflow-providers-apache-drill:*:*:*:*:*:*:*:*

References

Link	Resource
http://www.openwall.com/lists/oss-security/2023/08/11/1	Mailing List Patch Third Party Advisory
https://github.com/apache/airflow/pull/33074	Patch
https://lists.apache.org/thread/ozpl0opmob49rkcz8svo8wkxyw1395sf	Mailing List Patch Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: apache

Published: 2023-08-11T07:18:14.202Z

Updated: 2023-08-11T07:18:14.202Z

Reserved: 2023-08-05T14:03:09.106Z

Link: CVE-2023-39553

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-08-11T08:15:09.103

Modified: 2023-08-21T15:55:47.347

Link: CVE-2023-39553

JSON object: View

Redhat Information

No data.

CWE

CWE-20

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-39553", "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "state": "PUBLISHED", "assignerShortName": "apache", "dateReserved": "2023-08-05T14:03:09.106Z", "datePublished": "2023-08-11T07:18:14.202Z", "dateUpdated": "2023-08-11T07:18:14.202Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Apache Airflow Drill Provider", "vendor": "Apache Software Foundation", "versions": [{"lessThan": "2.4.3", "status": "affected", "version": "0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "finder", "value": "sw0rd1ight of Caiji Sec Team and 4ra1n of Chaitin Tech"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.<br><br><span style=\"background-color: rgb(255, 255, 255);\">Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server.</span><br><p>This issue affects Apache Airflow Drill Provider: before 2.4.3.<br><span style=\"background-color: rgb(255, 255, 255);\">It is recommended to upgrade to a version that is not affected.</span><br></p>"}], "value": "Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.\n\nApache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server.\nThis issue affects Apache Airflow Drill Provider: before 2.4.3.\nIt is recommended to upgrade to a version that is not affected.\n\n"}], "metrics": [{"other": {"content": {"text": "moderate"}, "type": "Textual description of severity"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache", "dateUpdated": "2023-08-11T07:18:14.202Z"}, "references": [{"tags": ["patch"], "url": "https://github.com/apache/airflow/pull/33074"}, {"tags": ["vendor-advisory"], "url": "https://lists.apache.org/thread/ozpl0opmob49rkcz8svo8wkxyw1395sf"}, {"url": "http://www.openwall.com/lists/oss-security/2023/08/11/1"}], "source": {"discovery": "UNKNOWN"}, "title": "Apache Airflow Drill Provider Arbitrary File Read Vulnerability", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:apache-airflow-providers-apache-drill:*:*:*:*:*:*:*:*", "matchCriteriaId": "A3513EAE-88C8-489D-AA08-1AB4D382503E", "versionEndExcluding": "2.4.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.\n\nApache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server.\nThis issue affects Apache Airflow Drill Provider: before 2.4.3.\nIt is recommended to upgrade to a version that is not affected.\n\n"}, {"lang": "es", "value": "Vulnerabilidad de validaci\u00f3n de entrada inadecuada en Apache Airflow Drill Provider de Apache Software Foundation.\n\nApache Airflow Drill Provider est\u00e1 afectado por una vulnerabilidad que permite a un atacante pasar par\u00e1metros maliciosos al establecer una conexi\u00f3n con DrillHook dando la oportunidad de leer archivos en el servidor Airflow.\nEste problema afecta a Apache Airflow Drill Provider: anterior a 2.4.3.\nSe recomienda actualizar a una versi\u00f3n que no est\u00e9 afectada."}], "id": "CVE-2023-39553", "lastModified": "2023-08-21T15:55:47.347", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-08-11T08:15:09.103", "references": [{"source": "security@apache.org", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/08/11/1"}, {"source": "security@apache.org", "tags": ["Patch"], "url": "https://github.com/apache/airflow/pull/33074"}, {"source": "security@apache.org", "tags": ["Mailing List", "Patch", "Vendor Advisory"], "url": "https://lists.apache.org/thread/ozpl0opmob49rkcz8svo8wkxyw1395sf"}], "sourceIdentifier": "security@apache.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "security@apache.org", "type": "Primary"}]}