CVE-2023-25806 - OpenCVE

OpenSearch Security is a plugin for OpenSearch that offers encryption, authentication and authorization. There is an observable discrepancy in the authentication response time between calls where the user provided exists and calls where it does not. This issue only affects calls using the internal basic identity provider (IdP), and not other externally configured IdPs. Patches were released in versions 1.3.9 and 2.6.0, there are no workarounds.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Amazon	Opensearch Opensearch Security

Configuration 1 [-]

OR	cpe:2.3:a:amazon:opensearch::::::docker::*
	cpe:2.3:a:amazon:opensearch::::::docker::*
	cpe:2.3:a:amazon:opensearch_security::::::opensearch::*
	cpe:2.3:a:amazon:opensearch_security::::::opensearch::*

No data.

References

Link	Providers
https://github.com/opensearch-project/security/security/advisories/GHSA-c6wg-cm5x-rqvj

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-03-02T03:04:26.889Z

Updated: 2024-08-02T11:32:12.694Z

Reserved: 2023-02-15T16:34:48.772Z

Link: CVE-2023-25806

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-03-02T04:15:10.987

Modified: 2023-03-10T04:58:06.087

Link: CVE-2023-25806

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-25806", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2023-02-15T16:34:48.772Z", "datePublished": "2023-03-02T03:04:26.889Z", "dateUpdated": "2024-08-02T11:32:12.694Z"}, "containers": {"cna": {"title": "Time discrepancy in authentication responses in OpenSearch", "problemTypes": [{"descriptions": [{"cweId": "CWE-208", "lang": "en", "description": "CWE-208: Observable Timing Discrepancy", "type": "CWE"}]}], "metrics": [{"cvssV3_0": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.0"}}], "references": [{"name": "https://github.com/opensearch-project/security/security/advisories/GHSA-c6wg-cm5x-rqvj", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/opensearch-project/security/security/advisories/GHSA-c6wg-cm5x-rqvj"}], "affected": [{"vendor": "opensearch-project", "product": "security", "versions": [{"version": "< 1.3.9", "status": "affected"}, {"version": ">= 2.0.0, < 2.6.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2023-03-02T03:04:26.889Z"}, "descriptions": [{"lang": "en", "value": "OpenSearch Security is a plugin for OpenSearch that offers encryption, authentication and authorization. There is an observable discrepancy in the authentication response time between calls where the user provided exists and calls where it does not. This issue only affects calls using the internal basic identity provider (IdP), and not other externally configured IdPs. Patches were released in versions 1.3.9 and 2.6.0, there are no workarounds."}], "source": {"advisory": "GHSA-c6wg-cm5x-rqvj", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T11:32:12.694Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/opensearch-project/security/security/advisories/GHSA-c6wg-cm5x-rqvj", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/opensearch-project/security/security/advisories/GHSA-c6wg-cm5x-rqvj"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:amazon:opensearch:*:*:*:*:*:docker:*:*", "matchCriteriaId": "F4FB9386-A716-45F8-BADB-FD3DEC46CE9F", "versionEndExcluding": "1.3.9", "vulnerable": true}, {"criteria": "cpe:2.3:a:amazon:opensearch:*:*:*:*:*:docker:*:*", "matchCriteriaId": "3B071571-5E3B-4949-BF5C-A940332F6ED4", "versionEndExcluding": "2.6.0", "versionStartIncluding": "2.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:amazon:opensearch_security:*:*:*:*:*:opensearch:*:*", "matchCriteriaId": "086C9822-AD99-4E9D-99F5-50D47AA4A24C", "versionEndExcluding": "1.3.9", "vulnerable": true}, {"criteria": "cpe:2.3:a:amazon:opensearch_security:*:*:*:*:*:opensearch:*:*", "matchCriteriaId": "BF88357A-F2C2-4D68-9A2D-E020B60024FE", "versionEndExcluding": "2.6.0", "versionStartIncluding": "2.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "OpenSearch Security is a plugin for OpenSearch that offers encryption, authentication and authorization. There is an observable discrepancy in the authentication response time between calls where the user provided exists and calls where it does not. This issue only affects calls using the internal basic identity provider (IdP), and not other externally configured IdPs. Patches were released in versions 1.3.9 and 2.6.0, there are no workarounds."}], "id": "CVE-2023-25806", "lastModified": "2023-03-10T04:58:06.087", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security-advisories@github.com", "type": "Secondary"}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-03-02T04:15:10.987", "references": [{"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/opensearch-project/security/security/advisories/GHSA-c6wg-cm5x-rqvj"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-203"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-208"}], "source": "security-advisories@github.com", "type": "Secondary"}]}