CVE-2017-5652 - OpenCVE

During a routine security analysis, it was found that one of the ports in Apache Impala (incubating) 2.7.0 to 2.8.0 sent data in plaintext even when the cluster was configured to use TLS. The port in question was used by the StatestoreSubscriber class which did not use the appropriate secure Thrift transport when TLS was turned on. It was therefore possible for an adversary, with access to the network, to eavesdrop on the packets going to and coming from that port and view the data in plaintext.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Apache	Impala

Configuration 1 [-]

OR	cpe:2.3:a:apache:impala:2.7.0:::::::*
	cpe:2.3:a:apache:impala:2.8.0:::::::*

No data.

References

Link	Providers
http://www.securityfocus.com/archive/1/540831/100/0/threaded
https://lists.apache.org/thread.html/5bab4424f23aebefc8108a0e30273c2a543a289df8113c461f930143%40%3Cdev.impala.apache.org%3E

History

No history.

MITRE

Status: PUBLISHED

Assigner: apache

Published: 2017-07-10T20:00:00Z

Updated: 2024-09-16T16:42:27.591Z

Reserved: 2017-01-29T00:00:00

Link: CVE-2017-5652

Vulnrichment

No data.

NVD

Status : Modified

Published: 2017-07-10T20:29:00.343

Modified: 2023-11-07T02:49:29.860

Link: CVE-2017-5652

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Apache Impala", "vendor": "Apache Software Foundation", "versions": [{"status": "affected", "version": "2.7.0 to 2.8.0 incubating"}]}], "datePublic": "2017-07-10T00:00:00", "descriptions": [{"lang": "en", "value": "During a routine security analysis, it was found that one of the ports in Apache Impala (incubating) 2.7.0 to 2.8.0 sent data in plaintext even when the cluster was configured to use TLS. The port in question was used by the StatestoreSubscriber class which did not use the appropriate secure Thrift transport when TLS was turned on. It was therefore possible for an adversary, with access to the network, to eavesdrop on the packets going to and coming from that port and view the data in plaintext."}], "problemTypes": [{"descriptions": [{"description": "Information Disclosure", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-09T18:57:01", "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache"}, "references": [{"name": "[dev] 20170710 [SECURITY] CVE-2017-5652 Apache Impala (incubating) Information Disclosure", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/5bab4424f23aebefc8108a0e30273c2a543a289df8113c461f930143%40%3Cdev.impala.apache.org%3E"}, {"name": "20170710 [SECURITY] CVE-2017-5652 Apache Impala (incubating) Information Disclosure", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/540831/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@apache.org", "DATE_PUBLIC": "2017-07-10T00:00:00", "ID": "CVE-2017-5652", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Apache Impala", "version": {"version_data": [{"version_value": "2.7.0 to 2.8.0 incubating"}]}}]}, "vendor_name": "Apache Software Foundation"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "During a routine security analysis, it was found that one of the ports in Apache Impala (incubating) 2.7.0 to 2.8.0 sent data in plaintext even when the cluster was configured to use TLS. The port in question was used by the StatestoreSubscriber class which did not use the appropriate secure Thrift transport when TLS was turned on. It was therefore possible for an adversary, with access to the network, to eavesdrop on the packets going to and coming from that port and view the data in plaintext."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Information Disclosure"}]}]}, "references": {"reference_data": [{"name": "[dev] 20170710 [SECURITY] CVE-2017-5652 Apache Impala (incubating) Information Disclosure", "refsource": "MLIST", "url": "https://lists.apache.org/thread.html/5bab4424f23aebefc8108a0e30273c2a543a289df8113c461f930143@%3Cdev.impala.apache.org%3E"}, {"name": "20170710 [SECURITY] CVE-2017-5652 Apache Impala (incubating) Information Disclosure", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/540831/100/0/threaded"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T15:11:48.304Z"}, "title": "CVE Program Container", "references": [{"name": "[dev] 20170710 [SECURITY] CVE-2017-5652 Apache Impala (incubating) Information Disclosure", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.apache.org/thread.html/5bab4424f23aebefc8108a0e30273c2a543a289df8113c461f930143%40%3Cdev.impala.apache.org%3E"}, {"name": "20170710 [SECURITY] CVE-2017-5652 Apache Impala (incubating) Information Disclosure", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/540831/100/0/threaded"}]}]}, "cveMetadata": {"assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "assignerShortName": "apache", "cveId": "CVE-2017-5652", "datePublished": "2017-07-10T20:00:00Z", "dateReserved": "2017-01-29T00:00:00", "dateUpdated": "2024-09-16T16:42:27.591Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:impala:2.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "497D7640-736C-4B18-94AE-5C72435383F3", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:impala:2.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "75A4E559-9641-4301-8175-29FB21AA65C7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "During a routine security analysis, it was found that one of the ports in Apache Impala (incubating) 2.7.0 to 2.8.0 sent data in plaintext even when the cluster was configured to use TLS. The port in question was used by the StatestoreSubscriber class which did not use the appropriate secure Thrift transport when TLS was turned on. It was therefore possible for an adversary, with access to the network, to eavesdrop on the packets going to and coming from that port and view the data in plaintext."}, {"lang": "es", "value": "Durante un an\u00e1lisis de seguridad, fue encontrado que uno de los puerto de Apache Impala 2.7.0 a 2.8.0 env\u00eda datos en texto plano incluso cuando esta configurado para usar TLS. El puerto en cuesti\u00f3n fue usado por la clase StatestoreSuscriber la cual no usa de forma segura el ahorro de transport cuando el TLS es encendido. Entonces es posible para un adversario, con acceso a la red, espiar los paquetes que van y vienen del puerto y ver los datos en texto plano."}], "id": "CVE-2017-5652", "lastModified": "2023-11-07T02:49:29.860", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-07-10T20:29:00.343", "references": [{"source": "security@apache.org", "url": "http://www.securityfocus.com/archive/1/540831/100/0/threaded"}, {"source": "security@apache.org", "url": "https://lists.apache.org/thread.html/5bab4424f23aebefc8108a0e30273c2a543a289df8113c461f930143%40%3Cdev.impala.apache.org%3E"}], "sourceIdentifier": "security@apache.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-319"}], "source": "nvd@nist.gov", "type": "Primary"}]}