CVE-2023-6725 - OpenCVE

An access-control flaw was found in the OpenStack Designate component where private configuration information including access keys to BIND were improperly made world readable. A malicious attacker with access to any container could exploit this flaw to access sensitive information.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact Low

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Redhat	Openstack

No data.

Package	CPE	Advisory	Released Date
Red Hat OpenStack Platform 17.1 for RHEL 8
openstack-tripleo-heat-templates-0:14.3.1-17.1.20231103003762.el8ost	cpe:/a:redhat:openstack:17.1::el8	RHSA-2024:2770	2024-05-22T00:00:00Z
tripleo-ansible-0:3.3.1-17.1.20231101233754.el8ost	cpe:/a:redhat:openstack:17.1::el8	RHSA-2024:2770	2024-05-22T00:00:00Z
Red Hat OpenStack Platform 17.1 for RHEL 9
openstack-tripleo-heat-templates-0:14.3.1-17.1.20231103010840.el9ost	cpe:/a:redhat:openstack:17.1::el9	RHSA-2024:2736	2024-05-22T00:00:00Z
tripleo-ansible-0:3.3.1-17.1.20231101230831.el9ost	cpe:/a:redhat:openstack:17.1::el9	RHSA-2024:2736	2024-05-22T00:00:00Z

References

Link	Providers
https://access.redhat.com/errata/RHSA-2024:2736
https://access.redhat.com/errata/RHSA-2024:2770
https://access.redhat.com/security/cve/CVE-2023-6725
https://bugzilla.redhat.com/show_bug.cgi?id=2249273
https://nvd.nist.gov/vuln/detail/CVE-2023-6725
https://www.cve.org/CVERecord?id=CVE-2023-6725

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2024-03-15T12:38:23.158Z

Updated: 2024-09-16T18:30:50.584Z

Reserved: 2023-12-12T09:57:13.700Z

Link: CVE-2023-6725

Vulnrichment

Updated: 2024-08-02T08:35:14.912Z

NVD

Status : Awaiting Analysis

Published: 2024-03-15T13:15:06.857

Modified: 2024-05-22T22:15:08.463

Link: CVE-2023-6725

Redhat

Severity : Moderate

Publid Date: 2024-03-15T00:00:00Z

Links: CVE-2023-6725 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-6725", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "state": "PUBLISHED", "assignerShortName": "redhat", "dateReserved": "2023-12-12T09:57:13.700Z", "datePublished": "2024-03-15T12:38:23.158Z", "dateUpdated": "2024-09-16T18:30:50.584Z"}, "containers": {"cna": {"title": "Tripleo-ansible: bind keys are world readable", "metrics": [{"other": {"content": {"value": "Moderate", "namespace": "https://access.redhat.com/security/updates/classification/"}, "type": "Red Hat severity rating"}}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 6.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L", "version": "3.1"}, "format": "CVSS"}], "descriptions": [{"lang": "en", "value": "An access-control flaw was found in the OpenStack Designate component where private configuration information including access keys to BIND were improperly made world readable. A malicious attacker with access to any container could exploit this flaw to access sensitive information."}], "affected": [{"vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1 for RHEL 8", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "openstack-tripleo-heat-templates", "defaultStatus": "affected", "versions": [{"version": "0:14.3.1-17.1.20231103003762.el8ost", "lessThan": "*", "versionType": "rpm", "status": "unaffected"}], "cpes": ["cpe:/a:redhat:openstack:17.1::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1 for RHEL 8", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "tripleo-ansible", "defaultStatus": "affected", "versions": [{"version": "0:3.3.1-17.1.20231101233754.el8ost", "lessThan": "*", "versionType": "rpm", "status": "unaffected"}], "cpes": ["cpe:/a:redhat:openstack:17.1::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1 for RHEL 9", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "openstack-tripleo-heat-templates", "defaultStatus": "affected", "versions": [{"version": "0:14.3.1-17.1.20231103010840.el9ost", "lessThan": "*", "versionType": "rpm", "status": "unaffected"}], "cpes": ["cpe:/a:redhat:openstack:17.1::el9"]}, {"vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1 for RHEL 9", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "tripleo-ansible", "defaultStatus": "affected", "versions": [{"version": "0:3.3.1-17.1.20231101230831.el9ost", "lessThan": "*", "versionType": "rpm", "status": "unaffected"}], "cpes": ["cpe:/a:redhat:openstack:17.1::el9"]}, {"vendor": "Red Hat", "product": "Red Hat OpenStack Platform 16.1", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "openstack-designate", "defaultStatus": "unaffected", "cpes": ["cpe:/a:redhat:openstack:16.1"]}, {"vendor": "Red Hat", "product": "Red Hat OpenStack Platform 16.2", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "openstack-designate", "defaultStatus": "unaffected", "cpes": ["cpe:/a:redhat:openstack:16.2"]}, {"vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "openstack-designate", "defaultStatus": "affected", "cpes": ["cpe:/a:redhat:openstack:17.1"]}, {"vendor": "Red Hat", "product": "Red Hat OpenStack Platform 18.0", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "openstack-designate", "defaultStatus": "unaffected", "cpes": ["cpe:/a:redhat:openstack:18.0"]}], "references": [{"url": "https://access.redhat.com/errata/RHSA-2024:2736", "name": "RHSA-2024:2736", "tags": ["vendor-advisory", "x_refsource_REDHAT"]}, {"url": "https://access.redhat.com/errata/RHSA-2024:2770", "name": "RHSA-2024:2770", "tags": ["vendor-advisory", "x_refsource_REDHAT"]}, {"url": "https://access.redhat.com/security/cve/CVE-2023-6725", "tags": ["vdb-entry", "x_refsource_REDHAT"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2249273", "name": "RHBZ#2249273", "tags": ["issue-tracking", "x_refsource_REDHAT"]}], "datePublic": "2024-03-15T00:00:00+00:00", "problemTypes": [{"descriptions": [{"cweId": "CWE-1220", "description": "Insufficient Granularity of Access Control", "lang": "en", "type": "CWE"}]}], "x_redhatCweChain": "CWE-1220: Insufficient Granularity of Access Control", "timeline": [{"lang": "en", "time": "2023-11-11T00:00:00+00:00", "value": "Reported to Red Hat."}, {"lang": "en", "time": "2024-03-15T00:00:00+00:00", "value": "Made public."}], "credits": [{"lang": "en", "value": "This issue was discovered by Michael Johnson (Red Hat)."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2024-09-16T18:30:50.584Z"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:35:14.912Z"}, "title": "CVE Program Container", "references": [{"url": "https://access.redhat.com/errata/RHSA-2024:2736", "name": "RHSA-2024:2736", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"]}, {"url": "https://access.redhat.com/errata/RHSA-2024:2770", "name": "RHSA-2024:2770", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"]}, {"url": "https://access.redhat.com/security/cve/CVE-2023-6725", "tags": ["vdb-entry", "x_refsource_REDHAT", "x_transferred"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2249273", "name": "RHBZ#2249273", "tags": ["issue-tracking", "x_refsource_REDHAT", "x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-03-15T16:37:30.842696Z", "id": "CVE-2023-6725", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T20:40:29.242Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://access.redhat.com/errata/RHSA-2024:2736", "name": "RHSA-2024:2736", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"]}, {"url": "https://access.redhat.com/errata/RHSA-2024:2770", "name": "RHSA-2024:2770", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"]}, {"url": "https://access.redhat.com/security/cve/CVE-2023-6725", "tags": ["vdb-entry", "x_refsource_REDHAT", "x_transferred"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2249273", "name": "RHBZ#2249273", "tags": ["issue-tracking", "x_refsource_REDHAT", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:35:14.912Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-6725", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-03-15T16:37:30.842696Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-12T20:40:25.902Z"}}], "cna": {"title": "Tripleo-ansible: bind keys are world readable", "credits": [{"lang": "en", "value": "This issue was discovered by Michael Johnson (Red Hat)."}], "metrics": [{"other": {"type": "Red Hat severity rating", "content": {"value": "Moderate", "namespace": "https://access.redhat.com/security/updates/classification/"}}}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.6, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}], "affected": [{"cpes": ["cpe:/a:redhat:openstack:17.1::el8"], "vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1 for RHEL 8", "versions": [{"status": "unaffected", "version": "0:14.3.1-17.1.20231103003762.el8ost", "lessThan": "*", "versionType": "rpm"}], "packageName": "openstack-tripleo-heat-templates", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "affected"}, {"cpes": ["cpe:/a:redhat:openstack:17.1::el8"], "vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1 for RHEL 8", "versions": [{"status": "unaffected", "version": "0:3.3.1-17.1.20231101233754.el8ost", "lessThan": "*", "versionType": "rpm"}], "packageName": "tripleo-ansible", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "affected"}, {"cpes": ["cpe:/a:redhat:openstack:17.1::el9"], "vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1 for RHEL 9", "versions": [{"status": "unaffected", "version": "0:14.3.1-17.1.20231103010840.el9ost", "lessThan": "*", "versionType": "rpm"}], "packageName": "openstack-tripleo-heat-templates", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "affected"}, {"cpes": ["cpe:/a:redhat:openstack:17.1::el9"], "vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1 for RHEL 9", "versions": [{"status": "unaffected", "version": "0:3.3.1-17.1.20231101230831.el9ost", "lessThan": "*", "versionType": "rpm"}], "packageName": "tripleo-ansible", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "affected"}, {"cpes": ["cpe:/a:redhat:openstack:16.1"], "vendor": "Red Hat", "product": "Red Hat OpenStack Platform 16.1", "packageName": "openstack-designate", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openstack:16.2"], "vendor": "Red Hat", "product": "Red Hat OpenStack Platform 16.2", "packageName": "openstack-designate", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openstack:17.1"], "vendor": "Red Hat", "product": "Red Hat OpenStack Platform 17.1", "packageName": "openstack-designate", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "affected"}, {"cpes": ["cpe:/a:redhat:openstack:18.0"], "vendor": "Red Hat", "product": "Red Hat OpenStack Platform 18.0", "packageName": "openstack-designate", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2023-11-11T00:00:00+00:00", "value": "Reported to Red Hat."}, {"lang": "en", "time": "2024-03-15T00:00:00+00:00", "value": "Made public."}], "datePublic": "2024-03-15T00:00:00+00:00", "references": [{"url": "https://access.redhat.com/errata/RHSA-2024:2736", "name": "RHSA-2024:2736", "tags": ["vendor-advisory", "x_refsource_REDHAT"]}, {"url": "https://access.redhat.com/errata/RHSA-2024:2770", "name": "RHSA-2024:2770", "tags": ["vendor-advisory", "x_refsource_REDHAT"]}, {"url": "https://access.redhat.com/security/cve/CVE-2023-6725", "tags": ["vdb-entry", "x_refsource_REDHAT"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2249273", "name": "RHBZ#2249273", "tags": ["issue-tracking", "x_refsource_REDHAT"]}], "descriptions": [{"lang": "en", "value": "An access-control flaw was found in the OpenStack Designate component where private configuration information including access keys to BIND were improperly made world readable. A malicious attacker with access to any container could exploit this flaw to access sensitive information."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1220", "description": "Insufficient Granularity of Access Control"}]}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2024-09-16T18:30:50.584Z"}, "x_redhatCweChain": "CWE-1220: Insufficient Granularity of Access Control"}}, "cveMetadata": {"cveId": "CVE-2023-6725", "state": "PUBLISHED", "dateUpdated": "2024-09-16T18:30:50.584Z", "dateReserved": "2023-12-12T09:57:13.700Z", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "datePublished": "2024-03-15T12:38:23.158Z", "assignerShortName": "redhat"}, "dataVersion": "5.1"}

{"acknowledgement": "This issue was discovered by Michael Johnson (Red Hat).", "affected_release": [{"advisory": "RHSA-2024:2770", "cpe": "cpe:/a:redhat:openstack:17.1::el8", "package": "openstack-tripleo-heat-templates-0:14.3.1-17.1.20231103003762.el8ost", "product_name": "Red Hat OpenStack Platform 17.1 for RHEL 8", "release_date": "2024-05-22T00:00:00Z"}, {"advisory": "RHSA-2024:2770", "cpe": "cpe:/a:redhat:openstack:17.1::el8", "package": "tripleo-ansible-0:3.3.1-17.1.20231101233754.el8ost", "product_name": "Red Hat OpenStack Platform 17.1 for RHEL 8", "release_date": "2024-05-22T00:00:00Z"}, {"advisory": "RHSA-2024:2736", "cpe": "cpe:/a:redhat:openstack:17.1::el9", "package": "openstack-tripleo-heat-templates-0:14.3.1-17.1.20231103010840.el9ost", "product_name": "Red Hat OpenStack Platform 17.1 for RHEL 9", "release_date": "2024-05-22T00:00:00Z"}, {"advisory": "RHSA-2024:2736", "cpe": "cpe:/a:redhat:openstack:17.1::el9", "package": "tripleo-ansible-0:3.3.1-17.1.20231101230831.el9ost", "product_name": "Red Hat OpenStack Platform 17.1 for RHEL 9", "release_date": "2024-05-22T00:00:00Z"}], "bugzilla": {"description": "tripleo-ansible: bind keys are world readable", "id": "2249273", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2249273"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.6", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L", "status": "verified"}, "cwe": "CWE-1220", "details": ["An access-control flaw was found in the OpenStack Designate component where private configuration information including access keys to BIND were improperly made world readable. A malicious attacker with access to any container could exploit this flaw to access sensitive information.", "An access-control flaw was found in the OpenStack Designate component where private configuration information including access keys to BIND were improperly made world readable. A malicious attacker with access to any container could exploit this flaw to access sensitive information."], "name": "CVE-2023-6725", "package_state": [{"cpe": "cpe:/a:redhat:openstack:16.1", "fix_state": "Not affected", "package_name": "openstack-designate", "product_name": "Red Hat OpenStack Platform 16.1"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Not affected", "package_name": "openstack-designate", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:openstack:17.1", "fix_state": "Affected", "package_name": "openstack-designate", "product_name": "Red Hat OpenStack Platform 17.1"}, {"cpe": "cpe:/a:redhat:openstack:18.0", "fix_state": "Not affected", "package_name": "openstack-designate", "product_name": "Red Hat OpenStack Platform 18.0"}], "public_date": "2024-03-15T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-6725\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-6725"], "threat_severity": "Moderate"}