CVE-2021-29620 - OpenCVE

Report portal is an open source reporting and analysis framework. Starting from version 3.1.0 of the service-api XML parsing was introduced. Unfortunately the XML parser was not configured properly to prevent XML external entity (XXE) attacks. This allows a user to import a specifically-crafted XML file which imports external Document Type Definition (DTD) file with external entities for extraction of secrets from Report Portal service-api module or server-side request forgery. This will be resolved in the 5.4.0 release.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Reportportal	Service-api

Configuration 1 [-]

cpe:2.3:a:reportportal:service-api:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/reportportal/reportportal/security/advisories/GHSA-24wf-7vf2-pv59
https://github.com/reportportal/service-api/pull/1392
https://mvnrepository.com/artifact/com.epam.reportportal/service-api

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2021-06-23T17:35:11

Updated: 2024-08-03T22:11:06.340Z

Reserved: 2021-03-30T00:00:00

Link: CVE-2021-29620

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2021-06-23T18:15:09.203

Modified: 2021-06-30T00:56:49.863

Link: CVE-2021-29620

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "reportportal", "vendor": "reportportal", "versions": [{"status": "affected", "version": ">= 3.1.0, < 5.4.0"}]}], "descriptions": [{"lang": "en", "value": "Report portal is an open source reporting and analysis framework. Starting from version 3.1.0 of the service-api XML parsing was introduced. Unfortunately the XML parser was not configured properly to prevent XML external entity (XXE) attacks. This allows a user to import a specifically-crafted XML file which imports external Document Type Definition (DTD) file with external entities for extraction of secrets from Report Portal service-api module or server-side request forgery. This will be resolved in the 5.4.0 release."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-611", "description": "CWE-611: Improper Restriction of XML External Entity Reference", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2021-06-23T17:35:11", "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/reportportal/reportportal/security/advisories/GHSA-24wf-7vf2-pv59"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/reportportal/service-api/pull/1392"}, {"tags": ["x_refsource_MISC"], "url": "https://mvnrepository.com/artifact/com.epam.reportportal/service-api"}], "source": {"advisory": "GHSA-24wf-7vf2-pv59", "discovery": "UNKNOWN"}, "title": "XXE vulnerability on Launch import with externally-defined DTD file", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security-advisories@github.com", "ID": "CVE-2021-29620", "STATE": "PUBLIC", "TITLE": "XXE vulnerability on Launch import with externally-defined DTD file"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "reportportal", "version": {"version_data": [{"version_value": ">= 3.1.0, < 5.4.0"}]}}]}, "vendor_name": "reportportal"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Report portal is an open source reporting and analysis framework. Starting from version 3.1.0 of the service-api XML parsing was introduced. Unfortunately the XML parser was not configured properly to prevent XML external entity (XXE) attacks. This allows a user to import a specifically-crafted XML file which imports external Document Type Definition (DTD) file with external entities for extraction of secrets from Report Portal service-api module or server-side request forgery. This will be resolved in the 5.4.0 release."}]}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-611: Improper Restriction of XML External Entity Reference"}]}]}, "references": {"reference_data": [{"name": "https://github.com/reportportal/reportportal/security/advisories/GHSA-24wf-7vf2-pv59", "refsource": "CONFIRM", "url": "https://github.com/reportportal/reportportal/security/advisories/GHSA-24wf-7vf2-pv59"}, {"name": "https://github.com/reportportal/service-api/pull/1392", "refsource": "MISC", "url": "https://github.com/reportportal/service-api/pull/1392"}, {"name": "https://mvnrepository.com/artifact/com.epam.reportportal/service-api", "refsource": "MISC", "url": "https://mvnrepository.com/artifact/com.epam.reportportal/service-api"}]}, "source": {"advisory": "GHSA-24wf-7vf2-pv59", "discovery": "UNKNOWN"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T22:11:06.340Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/reportportal/reportportal/security/advisories/GHSA-24wf-7vf2-pv59"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/reportportal/service-api/pull/1392"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://mvnrepository.com/artifact/com.epam.reportportal/service-api"}]}]}, "cveMetadata": {"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "assignerShortName": "GitHub_M", "cveId": "CVE-2021-29620", "datePublished": "2021-06-23T17:35:11", "dateReserved": "2021-03-30T00:00:00", "dateUpdated": "2024-08-03T22:11:06.340Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:reportportal:service-api:*:*:*:*:*:*:*:*", "matchCriteriaId": "4B235BD4-F98D-45CA-B1F3-EF159BBDDE45", "versionEndExcluding": "5.4.0", "versionStartIncluding": "3.1.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Report portal is an open source reporting and analysis framework. Starting from version 3.1.0 of the service-api XML parsing was introduced. Unfortunately the XML parser was not configured properly to prevent XML external entity (XXE) attacks. This allows a user to import a specifically-crafted XML file which imports external Document Type Definition (DTD) file with external entities for extraction of secrets from Report Portal service-api module or server-side request forgery. This will be resolved in the 5.4.0 release."}, {"lang": "es", "value": "Report portal es un marco de informes y an\u00e1lisis de c\u00f3digo abierto. A partir de la versi\u00f3n 3.1.0 del service-api se introdujo el an\u00e1lisis de XML. Lamentablemente, el analizador XML no estaba configurado apropiadamente para prevenir los ataques de tipo XML external entity (XXE). Esto permite a un usuario importar un archivo XML espec\u00edficamente dise\u00f1ado que importa un archivo de definici\u00f3n de tipo de documento (DTD) con entidades externas para la extracci\u00f3n de secretos del m\u00f3dulo de service-api de Report Portal o fallo de tipo server-side request forgery. Esto ser\u00e1 resuelto en la versi\u00f3n 5.4.0"}], "id": "CVE-2021-29620", "lastModified": "2021-06-30T00:56:49.863", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2021-06-23T18:15:09.203", "references": [{"source": "security-advisories@github.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/reportportal/reportportal/security/advisories/GHSA-24wf-7vf2-pv59"}, {"source": "security-advisories@github.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/reportportal/service-api/pull/1392"}, {"source": "security-advisories@github.com", "tags": ["Release Notes", "Third Party Advisory"], "url": "https://mvnrepository.com/artifact/com.epam.reportportal/service-api"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-611"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-611"}], "source": "security-advisories@github.com", "type": "Secondary"}]}