cnvd - cnvd-2022-08193

CNVD-2022-08193

Vulnerability from cnvd - Published: 2022-02-03

Title

Rapid7 Insight Agent任意文件读取漏洞

Description

Rapid7 Insight Agent是美国Rapid7公司的一款轻量级软件。该软件能够从IT资产中收集数据。 Rapid7 Insight Agent在3.1.3之前版本存在任意文件读取漏洞，该漏洞源于软件缺少对于机密信息的权限正确限制。攻击者可利用该漏洞可以访问、读取和复制该目录中的任何文件。

Severity

低

Patch Name

Rapid7 Insight Agent任意文件读取漏洞的补丁

Patch Description

Rapid7 Insight Agent是美国Rapid7公司的一款轻量级软件。该软件能够从IT资产中收集数据。 Rapid7 Insight Agent在3.1.3之前版本存在任意文件读取漏洞，该漏洞源于软件缺少对于机密信息的权限正确限制。攻击者可利用该漏洞可以访问、读取和复制该目录中的任何文件。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://docs.rapid7.com/release-notes/insightagent/20220119/

Reference

https://nvd.nist.gov/vuln/detail/CVE-2021-4016

Impacted products

Name
Rapid7 Insight Agent <3.1.3

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-4016",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-4016"
    }
  },
  "description": "Rapid7 Insight Agent\u662f\u7f8e\u56fdRapid7\u516c\u53f8\u7684\u4e00\u6b3e\u8f7b\u91cf\u7ea7\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u80fd\u591f\u4eceIT\u8d44\u4ea7\u4e2d\u6536\u96c6\u6570\u636e\u3002\n\nRapid7 Insight Agent\u57283.1.3\u4e4b\u524d\u7248\u672c\u5b58\u5728\u4efb\u610f\u6587\u4ef6\u8bfb\u53d6\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u8f6f\u4ef6\u7f3a\u5c11\u5bf9\u4e8e\u673a\u5bc6\u4fe1\u606f\u7684\u6743\u9650\u6b63\u786e\u9650\u5236\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u53ef\u4ee5\u8bbf\u95ee\u3001\u8bfb\u53d6\u548c\u590d\u5236\u8be5\u76ee\u5f55\u4e2d\u7684\u4efb\u4f55\u6587\u4ef6\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://docs.rapid7.com/release-notes/insightagent/20220119/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-08193",
  "openTime": "2022-02-03",
  "patchDescription": "Rapid7 Insight Agent\u662f\u7f8e\u56fdRapid7\u516c\u53f8\u7684\u4e00\u6b3e\u8f7b\u91cf\u7ea7\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u80fd\u591f\u4eceIT\u8d44\u4ea7\u4e2d\u6536\u96c6\u6570\u636e\u3002\r\n\r\nRapid7 Insight Agent\u57283.1.3\u4e4b\u524d\u7248\u672c\u5b58\u5728\u4efb\u610f\u6587\u4ef6\u8bfb\u53d6\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u8f6f\u4ef6\u7f3a\u5c11\u5bf9\u4e8e\u673a\u5bc6\u4fe1\u606f\u7684\u6743\u9650\u6b63\u786e\u9650\u5236\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u53ef\u4ee5\u8bbf\u95ee\u3001\u8bfb\u53d6\u548c\u590d\u5236\u8be5\u76ee\u5f55\u4e2d\u7684\u4efb\u4f55\u6587\u4ef6\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Rapid7 Insight Agent\u4efb\u610f\u6587\u4ef6\u8bfb\u53d6\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Rapid7 Insight Agent \u003c3.1.3"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2021-4016",
  "serverity": "\u4f4e",
  "submitTime": "2022-01-25",
  "title": "Rapid7 Insight Agent\u4efb\u610f\u6587\u4ef6\u8bfb\u53d6\u6f0f\u6d1e"
}

CVE-2021-4016 (GCVE-0-2021-4016)

Vulnerability from cvelistv5 – Published: 2022-01-21 18:00 – Updated: 2024-09-16 22:30

Summary

Rapid7 Insight Agent, versions prior to 3.1.3, suffer from an improper access control vulnerability whereby, the user has access to the snapshot directory. An attacker can access, read and copy any of the files in this directory e.g. asset_info.json or file_info.json, leading to a loss of confidentiality. This issue was fixed in Rapid7 Insight Agent 3.1.3.

Severity ?

4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE

CWE-284 - Improper Access Control

Assigner

rapid7

References

URL

Tags

https://docs.rapid7.com/release-notes/insightagen…

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Rapid7	Insight Agent	Affected: 3.1.3 , < 3.1.3 (custom)

Credits

Andreas Welcker

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T17:16:03.186Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://docs.rapid7.com/release-notes/insightagent/20220119/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Insight Agent",
          "vendor": "Rapid7",
          "versions": [
            {
              "lessThan": "3.1.3",
              "status": "affected",
              "version": "3.1.3",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Andreas Welcker"
        }
      ],
      "datePublic": "2022-01-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Rapid7 Insight Agent, versions prior to 3.1.3, suffer from an improper access control vulnerability whereby, the user has access to the snapshot directory. An attacker can access, read and copy any of the files in this directory e.g. asset_info.json or file_info.json, leading to a loss of confidentiality. This issue was fixed in Rapid7 Insight Agent 3.1.3."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284 Improper Access Control",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-01-21T18:00:11",
        "orgId": "9974b330-7714-4307-a722-5648477acda7",
        "shortName": "rapid7"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://docs.rapid7.com/release-notes/insightagent/20220119/"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Rapid7 Insight Agent Improper Access Control",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "AKA": "",
          "ASSIGNER": "cve@rapid7.com",
          "DATE_PUBLIC": "2022-01-19T00:00:00.000Z",
          "ID": "CVE-2021-4016",
          "STATE": "PUBLIC",
          "TITLE": "Rapid7 Insight Agent Improper Access Control"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Insight Agent",
                      "version": {
                        "version_data": [
                          {
                            "platform": "",
                            "version_affected": "\u003c",
                            "version_name": "3.1.3",
                            "version_value": "3.1.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Rapid7"
              }
            ]
          }
        },
        "configuration": [],
        "credit": [
          {
            "lang": "eng",
            "value": "Andreas Welcker"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Rapid7 Insight Agent, versions prior to 3.1.3, suffer from an improper access control vulnerability whereby, the user has access to the snapshot directory. An attacker can access, read and copy any of the files in this directory e.g. asset_info.json or file_info.json, leading to a loss of confidentiality. This issue was fixed in Rapid7 Insight Agent 3.1.3."
            }
          ]
        },
        "exploit": [],
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-284 Improper Access Control"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://docs.rapid7.com/release-notes/insightagent/20220119/",
              "refsource": "CONFIRM",
              "url": "https://docs.rapid7.com/release-notes/insightagent/20220119/"
            }
          ]
        },
        "solution": [],
        "source": {
          "advisory": "",
          "defect": [],
          "discovery": "UNKNOWN"
        },
        "work_around": []
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
    "assignerShortName": "rapid7",
    "cveId": "CVE-2021-4016",
    "datePublished": "2022-01-21T18:00:11.396123Z",
    "dateReserved": "2021-11-24T00:00:00",
    "dateUpdated": "2024-09-16T22:30:10.497Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2022-08193

CVE-2021-4016 (GCVE-0-2021-4016)

Tags

Sightings

Nomenclature