CVE-2022-35980 - OpenCVE

Vendors	Products
Amazon	Opensearch

Link	Providers
https://github.com/opensearch-project/security/commit/7eaaafec2939d7db23a02ffca9cc68e0343de246
https://github.com/opensearch-project/security/pull/1999
https://github.com/opensearch-project/security/security/advisories/GHSA-f4qr-f4xx-hjxw

{"containers": {"cna": {"affected": [{"product": "security", "vendor": "opensearch-project", "versions": [{"status": "affected", "version": ">= 2.0.0.0, <= 2.1.0.0"}]}], "descriptions": [{"lang": "en", "value": "OpenSearch Security is a plugin for OpenSearch that offers encryption, authentication and authorization. Versions 2.0.0.0 and 2.1.0.0 of the security plugin are affected by an information disclosure vulnerability. Requests to an OpenSearch cluster configured with advanced access control features document level security (DLS), field level security (FLS), and/or field masking will not be filtered when the query's search pattern matches an aliased index. OpenSearch Dashboards creates an alias to `.kibana` by default, so filters with the index pattern of `*` to restrict access to documents or fields will not be applied. This issue allows requests to access sensitive information when customer have acted to restrict access that specific information. OpenSearch 2.2.0, which is compatible with OpenSearch Security 2.2.0.0, contains the fix for this issue. There is no recommended work around."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-612", "description": "CWE-612: Improper Authorization of Index Containing Sensitive Information", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-08-12T17:40:09", "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/opensearch-project/security/security/advisories/GHSA-f4qr-f4xx-hjxw"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/opensearch-project/security/pull/1999"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/opensearch-project/security/commit/7eaaafec2939d7db23a02ffca9cc68e0343de246"}], "source": {"advisory": "GHSA-f4qr-f4xx-hjxw", "discovery": "UNKNOWN"}, "title": "OpenSearch vulnerable to Improper Authorization of Index Containing Sensitive Information", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security-advisories@github.com", "ID": "CVE-2022-35980", "STATE": "PUBLIC", "TITLE": "OpenSearch vulnerable to Improper Authorization of Index Containing Sensitive Information"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "security", "version": {"version_data": [{"version_value": ">= 2.0.0.0, <= 2.1.0.0"}]}}]}, "vendor_name": "opensearch-project"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "OpenSearch Security is a plugin for OpenSearch that offers encryption, authentication and authorization. Versions 2.0.0.0 and 2.1.0.0 of the security plugin are affected by an information disclosure vulnerability. Requests to an OpenSearch cluster configured with advanced access control features document level security (DLS), field level security (FLS), and/or field masking will not be filtered when the query's search pattern matches an aliased index. OpenSearch Dashboards creates an alias to `.kibana` by default, so filters with the index pattern of `*` to restrict access to documents or fields will not be applied. This issue allows requests to access sensitive information when customer have acted to restrict access that specific information. OpenSearch 2.2.0, which is compatible with OpenSearch Security 2.2.0.0, contains the fix for this issue. There is no recommended work around."}]}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-612: Improper Authorization of Index Containing Sensitive Information"}]}]}, "references": {"reference_data": [{"name": "https://github.com/opensearch-project/security/security/advisories/GHSA-f4qr-f4xx-hjxw", "refsource": "CONFIRM", "url": "https://github.com/opensearch-project/security/security/advisories/GHSA-f4qr-f4xx-hjxw"}, {"name": "https://github.com/opensearch-project/security/pull/1999", "refsource": "MISC", "url": "https://github.com/opensearch-project/security/pull/1999"}, {"name": "https://github.com/opensearch-project/security/commit/7eaaafec2939d7db23a02ffca9cc68e0343de246", "refsource": "MISC", "url": "https://github.com/opensearch-project/security/commit/7eaaafec2939d7db23a02ffca9cc68e0343de246"}]}, "source": {"advisory": "GHSA-f4qr-f4xx-hjxw", "discovery": "UNKNOWN"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T09:51:59.809Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/opensearch-project/security/security/advisories/GHSA-f4qr-f4xx-hjxw"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/opensearch-project/security/pull/1999"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/opensearch-project/security/commit/7eaaafec2939d7db23a02ffca9cc68e0343de246"}]}]}, "cveMetadata": {"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "assignerShortName": "GitHub_M", "cveId": "CVE-2022-35980", "datePublished": "2022-08-12T17:40:09", "dateReserved": "2022-07-15T00:00:00", "dateUpdated": "2024-08-03T09:51:59.809Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:amazon:opensearch:2.0.0:*:*:*:*:docker:*:*", "matchCriteriaId": "C945CD2E-F116-4E29-A8B0-1093165EB9E9", "vulnerable": true}, {"criteria": "cpe:2.3:a:amazon:opensearch:2.1.0:*:*:*:*:docker:*:*", "matchCriteriaId": "EF025C8F-AFEB-47E4-A540-95949DBEA74B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "OpenSearch Security is a plugin for OpenSearch that offers encryption, authentication and authorization. Versions 2.0.0.0 and 2.1.0.0 of the security plugin are affected by an information disclosure vulnerability. Requests to an OpenSearch cluster configured with advanced access control features document level security (DLS), field level security (FLS), and/or field masking will not be filtered when the query's search pattern matches an aliased index. OpenSearch Dashboards creates an alias to `.kibana` by default, so filters with the index pattern of `*` to restrict access to documents or fields will not be applied. This issue allows requests to access sensitive information when customer have acted to restrict access that specific information. OpenSearch 2.2.0, which is compatible with OpenSearch Security 2.2.0.0, contains the fix for this issue. There is no recommended work around."}, {"lang": "es", "value": "OpenSearch Security es un plugin para OpenSearch que ofrece cifrado, autenticaci\u00f3n y autorizaci\u00f3n. Las versiones 2.0.0.0 y 2.1.0.0 del plugin de seguridad est\u00e1n afectadas por una vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n. Las peticiones a un cl\u00faster de OpenSearch configurado con las funciones de control de acceso avanzado de seguridad a nivel de documento (DLS), seguridad a nivel de campo (FLS) y/o enmascaramiento de campos no son filtradas cuando el patr\u00f3n de b\u00fasqueda de la consulta coincida con un \u00edndice de alias. OpenSearch Dashboards crea un alias a \".kibana\" por defecto, por lo que los filtros con el patr\u00f3n de \u00edndice de \"*\" para restringir el acceso a documentos o campos no ser\u00e1n aplicados. Este problema permite que las peticiones accedan a informaci\u00f3n confidencial cuando el cliente ha actuado para restringir el acceso a esa informaci\u00f3n espec\u00edfica. OpenSearch versi\u00f3n 2.2.0, que es compatible con OpenSearch Security versi\u00f3n 2.2.0.0, contiene la correcci\u00f3n de este problema. No se presenta ninguna mitigaci\u00f3n recomendada."}], "id": "CVE-2022-35980", "lastModified": "2022-08-16T15:32:31.143", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2022-08-12T18:15:13.510", "references": [{"source": "security-advisories@github.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/opensearch-project/security/commit/7eaaafec2939d7db23a02ffca9cc68e0343de246"}, {"source": "security-advisories@github.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/opensearch-project/security/pull/1999"}, {"source": "security-advisories@github.com", "tags": ["Third Party Advisory"], "url": "https://github.com/opensearch-project/security/security/advisories/GHSA-f4qr-f4xx-hjxw"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-612"}], "source": "security-advisories@github.com", "type": "Secondary"}]}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object