CVE-2023-39553 - OpenCVE

Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider. Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server. This issue affects Apache Airflow Drill Provider: before 2.4.3. It is recommended to upgrade to a version that is not affected.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Apache	Apache-airflow-providers-apache-drill

Configuration 1 [-]

cpe:2.3:a:apache:apache-airflow-providers-apache-drill:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.openwall.com/lists/oss-security/2023/08/11/1
https://github.com/apache/airflow/pull/33074
https://lists.apache.org/thread/ozpl0opmob49rkcz8svo8wkxyw1395sf

History

No history.

MITRE

Status: PUBLISHED

Assigner: apache

Published: 2023-08-11T07:18:14.202Z

Updated: 2024-08-02T18:10:21.143Z

Reserved: 2023-08-05T14:03:09.106Z

Link: CVE-2023-39553

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-08-11T08:15:09.103

Modified: 2023-08-21T15:55:47.347

Link: CVE-2023-39553

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-39553", "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "state": "PUBLISHED", "assignerShortName": "apache", "dateReserved": "2023-08-05T14:03:09.106Z", "datePublished": "2023-08-11T07:18:14.202Z", "dateUpdated": "2024-08-02T18:10:21.143Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Apache Airflow Drill Provider", "vendor": "Apache Software Foundation", "versions": [{"lessThan": "2.4.3", "status": "affected", "version": "0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "finder", "value": "sw0rd1ight of Caiji Sec Team and 4ra1n of Chaitin Tech"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.<br><br><span style=\"background-color: rgb(255, 255, 255);\">Apache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server.</span><br><p>This issue affects Apache Airflow Drill Provider: before 2.4.3.<br><span style=\"background-color: rgb(255, 255, 255);\">It is recommended to upgrade to a version that is not affected.</span><br></p>"}], "value": "Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.\n\nApache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server.\nThis issue affects Apache Airflow Drill Provider: before 2.4.3.\nIt is recommended to upgrade to a version that is not affected.\n\n"}], "metrics": [{"other": {"content": {"text": "moderate"}, "type": "Textual description of severity"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09", "shortName": "apache", "dateUpdated": "2023-08-11T07:18:14.202Z"}, "references": [{"tags": ["patch"], "url": "https://github.com/apache/airflow/pull/33074"}, {"tags": ["vendor-advisory"], "url": "https://lists.apache.org/thread/ozpl0opmob49rkcz8svo8wkxyw1395sf"}, {"url": "http://www.openwall.com/lists/oss-security/2023/08/11/1"}], "source": {"discovery": "UNKNOWN"}, "title": "Apache Airflow Drill Provider Arbitrary File Read Vulnerability", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T18:10:21.143Z"}, "title": "CVE Program Container", "references": [{"tags": ["patch", "x_transferred"], "url": "https://github.com/apache/airflow/pull/33074"}, {"tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.apache.org/thread/ozpl0opmob49rkcz8svo8wkxyw1395sf"}, {"url": "http://www.openwall.com/lists/oss-security/2023/08/11/1", "tags": ["x_transferred"]}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:apache-airflow-providers-apache-drill:*:*:*:*:*:*:*:*", "matchCriteriaId": "A3513EAE-88C8-489D-AA08-1AB4D382503E", "versionEndExcluding": "2.4.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Drill Provider.\n\nApache Airflow Drill Provider is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection with DrillHook giving an opportunity to read files on the Airflow server.\nThis issue affects Apache Airflow Drill Provider: before 2.4.3.\nIt is recommended to upgrade to a version that is not affected.\n\n"}, {"lang": "es", "value": "Vulnerabilidad de validaci\u00f3n de entrada inadecuada en Apache Airflow Drill Provider de Apache Software Foundation.\n\nApache Airflow Drill Provider est\u00e1 afectado por una vulnerabilidad que permite a un atacante pasar par\u00e1metros maliciosos al establecer una conexi\u00f3n con DrillHook dando la oportunidad de leer archivos en el servidor Airflow.\nEste problema afecta a Apache Airflow Drill Provider: anterior a 2.4.3.\nSe recomienda actualizar a una versi\u00f3n que no est\u00e9 afectada."}], "id": "CVE-2023-39553", "lastModified": "2023-08-21T15:55:47.347", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-08-11T08:15:09.103", "references": [{"source": "security@apache.org", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/08/11/1"}, {"source": "security@apache.org", "tags": ["Patch"], "url": "https://github.com/apache/airflow/pull/33074"}, {"source": "security@apache.org", "tags": ["Mailing List", "Patch", "Vendor Advisory"], "url": "https://lists.apache.org/thread/ozpl0opmob49rkcz8svo8wkxyw1395sf"}], "sourceIdentifier": "security@apache.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "security@apache.org", "type": "Primary"}]}