cnvd - cnvd-2022-76240

CNVD-2022-76240

Vulnerability from cnvd - Published: 2022-11-11

Title

Apache Pinot拒绝服务漏洞

Description

Apache Pinot是美国阿帕奇（Apache）基金会的一个实时分布式OLAP数据存储。旨在提供超低延迟分析。 Apache Pinot 0.9.3及之前版本存在拒绝服务漏洞，攻击者可利用该漏洞在允许开放访问控制器的Pinot安装中通过特制请求来导致Pinot服务中断。

Severity

中

Patch Name

Apache Pinot拒绝服务漏洞的补丁

Patch Description

Apache Pinot是美国阿帕奇（Apache）基金会的一个实时分布式OLAP数据存储。旨在提供超低延迟分析。 Apache Pinot 0.9.3及之前版本存在拒绝服务漏洞，攻击者可利用该漏洞在允许开放访问控制器的Pinot安装中通过特制请求来导致Pinot服务中断。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://lists.apache.org/thread/3dk8pf1n02p8oj2j3czbtchyjsf8khwr

Reference

https://nvd.nist.gov/vuln/detail/CVE-2022-23974

Impacted products

Name
Apache Pinot <=0.9.3

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2022-23974"
    }
  },
  "description": "Apache Pinot\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u4e2a\u5b9e\u65f6\u5206\u5e03\u5f0fOLAP\u6570\u636e\u5b58\u50a8\u3002\u65e8\u5728\u63d0\u4f9b\u8d85\u4f4e\u5ef6\u8fdf\u5206\u6790\u3002\n\nApache Pinot 0.9.3\u53ca\u4e4b\u524d\u7248\u672c\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5141\u8bb8\u5f00\u653e\u8bbf\u95ee\u63a7\u5236\u5668\u7684Pinot\u5b89\u88c5\u4e2d\u901a\u8fc7\u7279\u5236\u8bf7\u6c42\u6765\u5bfc\u81f4Pinot\u670d\u52a1\u4e2d\u65ad\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://lists.apache.org/thread/3dk8pf1n02p8oj2j3czbtchyjsf8khwr",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-76240",
  "openTime": "2022-11-11",
  "patchDescription": "Apache Pinot\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u4e2a\u5b9e\u65f6\u5206\u5e03\u5f0fOLAP\u6570\u636e\u5b58\u50a8\u3002\u65e8\u5728\u63d0\u4f9b\u8d85\u4f4e\u5ef6\u8fdf\u5206\u6790\u3002\r\n\r\nApache Pinot 0.9.3\u53ca\u4e4b\u524d\u7248\u672c\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5141\u8bb8\u5f00\u653e\u8bbf\u95ee\u63a7\u5236\u5668\u7684Pinot\u5b89\u88c5\u4e2d\u901a\u8fc7\u7279\u5236\u8bf7\u6c42\u6765\u5bfc\u81f4Pinot\u670d\u52a1\u4e2d\u65ad\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Apache Pinot\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Apache Pinot \u003c=0.9.3"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2022-23974",
  "serverity": "\u4e2d",
  "submitTime": "2022-04-07",
  "title": "Apache Pinot\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

CVE-2022-23974 (GCVE-0-2022-23974)

Vulnerability from cvelistv5 – Published: 2022-04-05 19:55 – Updated: 2024-08-03 03:59

Summary

In 0.9.3 or older versions of Apache Pinot segment upload path allowed segment directories to be imported into pinot tables. In pinot installations that allow open access to the controller a specially crafted request can potentially be exploited to cause disruption in pinot service. Pinot release 0.10.0 fixes this. See https://docs.pinot.apache.org/basics/releases/0.10.0

Severity ?

No CVSS data available.

CWE

CWE-674 - Uncontrolled Recursion

Assigner

apache

References

URL

Tags

https://lists.apache.org/thread/3dk8pf1n02p8oj2j3…

x_refsource_MISC

Impacted products

	Vendor	Product	Version
	Apache Software Foundation	Apache Pinot	Affected: Apache Pinot , ≤ 0.9.3 (custom)

Credits

Apache Pinot would like to thank bubblegumkk@qq.com, Kuiplatain@knownsec and FA1C0N@RPO_OFFICIAL for reporting the issue

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T03:59:23.228Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread/3dk8pf1n02p8oj2j3czbtchyjsf8khwr"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache Pinot",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThanOrEqual": "0.9.3",
              "status": "affected",
              "version": "Apache Pinot",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Apache Pinot would like to thank bubblegumkk@qq.com, Kuiplatain@knownsec and FA1C0N@RPO_OFFICIAL for reporting the issue"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In 0.9.3 or older versions of Apache Pinot segment upload path allowed segment directories to be imported into pinot tables. In pinot installations that allow open access to the controller a specially crafted request can potentially be exploited to cause disruption in pinot service. Pinot release 0.10.0 fixes this. See https://docs.pinot.apache.org/basics/releases/0.10.0"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-674",
              "description": "CWE-674 Uncontrolled Recursion",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-05T19:55:08",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://lists.apache.org/thread/3dk8pf1n02p8oj2j3czbtchyjsf8khwr"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Pinot segment push endpoint has a vulnerability in unprotected environments",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-23974",
          "STATE": "PUBLIC",
          "TITLE": "Pinot segment push endpoint has a vulnerability in unprotected environments"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache Pinot",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_name": "Apache Pinot",
                            "version_value": "0.9.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "Apache Pinot would like to thank bubblegumkk@qq.com, Kuiplatain@knownsec and FA1C0N@RPO_OFFICIAL for reporting the issue"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In 0.9.3 or older versions of Apache Pinot segment upload path allowed segment directories to be imported into pinot tables. In pinot installations that allow open access to the controller a specially crafted request can potentially be exploited to cause disruption in pinot service. Pinot release 0.10.0 fixes this. See https://docs.pinot.apache.org/basics/releases/0.10.0"
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {}
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-674 Uncontrolled Recursion"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://lists.apache.org/thread/3dk8pf1n02p8oj2j3czbtchyjsf8khwr",
              "refsource": "MISC",
              "url": "https://lists.apache.org/thread/3dk8pf1n02p8oj2j3czbtchyjsf8khwr"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-23974",
    "datePublished": "2022-04-05T19:55:08",
    "dateReserved": "2022-01-26T00:00:00",
    "dateUpdated": "2024-08-03T03:59:23.228Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2022-76240

CVE-2022-23974 (GCVE-0-2022-23974)

Tags

Sightings

Nomenclature