cvelistv5 - cve-2024-31141

CVE-2024-31141 (GCVE-0-2024-31141)

Vulnerability from cvelistv5

Published

2024-11-19 08:40

Modified

2025-01-31 15:02

Severity ?

Summary

Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients. Apache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables. In applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables. In particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products. This issue affects Apache Kafka Clients: from 2.3.0 through 3.5.2, 3.6.2, 3.7.0. Users with affected applications are recommended to upgrade kafka-clients to version >=3.8.0, and set the JVM system property "org.apache.kafka.automatic.config.providers=none". Users of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate "allowlist.pattern" and "allowed.paths" to restrict their operation to appropriate bounds. For users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property. For users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.

References

▼	URL	Tags
	security@apache.org	https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv
	af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2024/11/18/5
	af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20250131-0001/

Impacted products

	Vendor	Product	Version
	Apache Software Foundation	Apache Kafka Clients	Version: 2.3.0 ≤ 3.5.2 Version: 3.6.0 ≤ 3.6.2 Version: 3.7.0 ≤

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2025-01-31T15:02:44.982Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  url: "http://www.openwall.com/lists/oss-security/2024/11/18/5",
               },
               {
                  url: "https://security.netapp.com/advisory/ntap-20250131-0001/",
               },
            ],
            title: "CVE Program Container",
         },
         {
            metrics: [
               {
                  cvssV3_1: {
                     attackComplexity: "LOW",
                     attackVector: "NETWORK",
                     availabilityImpact: "NONE",
                     baseScore: 6.5,
                     baseSeverity: "MEDIUM",
                     confidentialityImpact: "HIGH",
                     integrityImpact: "NONE",
                     privilegesRequired: "LOW",
                     scope: "UNCHANGED",
                     userInteraction: "NONE",
                     vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                     version: "3.1",
                  },
               },
               {
                  other: {
                     content: {
                        id: "CVE-2024-31141",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2024-11-19T14:14:13.118831Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2024-11-19T14:15:34.254Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               collectionURL: "https://repo.maven.apache.org/maven2",
               defaultStatus: "unaffected",
               packageName: "org.apache.kafka:kafka-clients",
               product: "Apache Kafka Clients",
               vendor: "Apache Software Foundation",
               versions: [
                  {
                     lessThanOrEqual: "3.5.2",
                     status: "affected",
                     version: "2.3.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "3.6.2",
                     status: "affected",
                     version: "3.6.0",
                     versionType: "semver",
                  },
                  {
                     status: "affected",
                     version: "3.7.0",
                     versionType: "semver",
                  },
               ],
            },
         ],
         credits: [
            {
               lang: "en",
               type: "finder",
               value: "Greg Harris",
            },
            {
               lang: "en",
               type: "remediation reviewer",
               value: "Mickael Maison",
            },
            {
               lang: "en",
               type: "remediation reviewer",
               value: "Chris Egerton",
            },
         ],
         descriptions: [
            {
               lang: "en",
               supportingMedia: [
                  {
                     base64: false,
                     type: "text/html",
                     value: "Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.<br><br>Apache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables.<br>In applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.<br><br>In particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products.<br><p>This issue affects Apache Kafka Clients: from 2.3.0 through 3.5.2, 3.6.2, 3.7.0.<br></p><p>Users with affected applications are recommended to upgrade kafka-clients to version &gt;=3.8.0, and set the JVM system property \"org.apache.kafka.automatic.config.providers=none\".<br>Users of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate \"allowlist.pattern\" and \"allowed.paths\" to restrict their operation to appropriate bounds.<br></p>For users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property.<br><span style=\"background-color: var(--wht);\">For users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.<br></span>",
                  },
               ],
               value: "Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.\n\nApache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables.\nIn applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.\n\nIn particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products.\nThis issue affects Apache Kafka Clients: from 2.3.0 through 3.5.2, 3.6.2, 3.7.0.\n\n\nUsers with affected applications are recommended to upgrade kafka-clients to version >=3.8.0, and set the JVM system property \"org.apache.kafka.automatic.config.providers=none\".\nUsers of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate \"allowlist.pattern\" and \"allowed.paths\" to restrict their operation to appropriate bounds.\n\n\nFor users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property.\nFor users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.",
            },
         ],
         metrics: [
            {
               other: {
                  content: {
                     text: "moderate",
                  },
                  type: "Textual description of severity",
               },
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-552",
                     description: "CWE-552 Files or Directories Accessible to External Parties",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
            {
               descriptions: [
                  {
                     cweId: "CWE-269",
                     description: "CWE-269 Improper Privilege Management",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2024-11-19T08:40:50.695Z",
            orgId: "f0158376-9dc2-43b6-827c-5f631a4d8d09",
            shortName: "apache",
         },
         references: [
            {
               tags: [
                  "vendor-advisory",
               ],
               url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
            },
         ],
         source: {
            discovery: "INTERNAL",
         },
         title: "Apache Kafka Clients: Privilege escalation to filesystem read-access via automatic ConfigProvider",
         x_generator: {
            engine: "Vulnogram 0.1.0-dev",
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "f0158376-9dc2-43b6-827c-5f631a4d8d09",
      assignerShortName: "apache",
      cveId: "CVE-2024-31141",
      datePublished: "2024-11-19T08:40:50.695Z",
      dateReserved: "2024-03-28T16:57:34.016Z",
      dateUpdated: "2025-01-31T15:02:44.982Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      fkie_nvd: {
         descriptions: "[{\"lang\": \"en\", \"value\": \"Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.\\n\\nApache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables.\\nIn applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.\\n\\nIn particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products.\\nThis issue affects Apache Kafka Clients: from 2.3.0 through 3.5.2, 3.6.2, 3.7.0.\\n\\n\\nUsers with affected applications are recommended to upgrade kafka-clients to version >=3.8.0, and set the JVM system property \\\"org.apache.kafka.automatic.config.providers=none\\\".\\nUsers of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate \\\"allowlist.pattern\\\" and \\\"allowed.paths\\\" to restrict their operation to appropriate bounds.\\n\\n\\nFor users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property.\\nFor users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.\"}, {\"lang\": \"es\", \"value\": \"Archivos o directorios accesibles para terceros, vulnerabilidad de administraci\\u00f3n incorrecta de privilegios en clientes Apache Kafka. Los clientes Apache Kafka aceptan datos de configuraci\\u00f3n para personalizar el comportamiento e incluyen complementos ConfigProvider para manipular estas configuraciones. Apache Kafka tambi\\u00e9n proporciona implementaciones FileConfigProvider, DirectoryConfigProvider y EnvVarConfigProvider que incluyen la capacidad de leer desde el disco o variables de entorno. En aplicaciones donde las configuraciones de los clientes Apache Kafka pueden ser especificadas por un tercero que no es de confianza, los atacantes pueden usar estos ConfigProviders para leer contenido arbitrario del disco y las variables de entorno. En particular, esta falla puede usarse en Apache Kafka Connect para escalar desde el acceso a la API REST al acceso al sistema de archivos/entorno, lo que puede ser indeseable en ciertos entornos, incluidos los productos SaaS. Este problema afecta a los clientes Apache Kafka: desde 2.3.0 hasta 3.5.2, 3.6.2, 3.7.0. Se recomienda a los usuarios con aplicaciones afectadas que actualicen los clientes de Kafka a la versi\\u00f3n &gt;=3.8.0 y configuren la propiedad del sistema JVM \\\"org.apache.kafka.automatic.config.providers=none\\\". Tambi\\u00e9n se recomienda a los usuarios de Kafka Connect con una de las implementaciones de ConfigProvider enumeradas en la configuraci\\u00f3n de su trabajador que agreguen \\\"allowlist.pattern\\\" y \\\"allowed.paths\\\" adecuados para restringir su funcionamiento a los l\\u00edmites adecuados. Para los usuarios de Kafka Clients o Kafka Connect en entornos que conf\\u00edan a los usuarios el acceso a discos y variables de entorno, no se recomienda configurar la propiedad del sistema. Para los usuarios de Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams y las herramientas de l\\u00ednea de comandos de Kafka, no se recomienda configurar la propiedad del sistema.\"}]",
         id: "CVE-2024-31141",
         lastModified: "2024-11-21T09:12:54.913",
         metrics: "{\"cvssMetricV31\": [{\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}]}",
         published: "2024-11-19T09:15:03.860",
         references: "[{\"url\": \"https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv\", \"source\": \"security@apache.org\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/11/18/5\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
         sourceIdentifier: "security@apache.org",
         vulnStatus: "Awaiting Analysis",
         weaknesses: "[{\"source\": \"security@apache.org\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-269\"}, {\"lang\": \"en\", \"value\": \"CWE-552\"}]}]",
      },
      nvd: "{\"cve\":{\"id\":\"CVE-2024-31141\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2024-11-19T09:15:03.860\",\"lastModified\":\"2025-01-31T15:15:12.987\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.\\n\\nApache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables.\\nIn applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.\\n\\nIn particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products.\\nThis issue affects Apache Kafka Clients: from 2.3.0 through 3.5.2, 3.6.2, 3.7.0.\\n\\n\\nUsers with affected applications are recommended to upgrade kafka-clients to version >=3.8.0, and set the JVM system property \\\"org.apache.kafka.automatic.config.providers=none\\\".\\nUsers of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate \\\"allowlist.pattern\\\" and \\\"allowed.paths\\\" to restrict their operation to appropriate bounds.\\n\\n\\nFor users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property.\\nFor users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.\"},{\"lang\":\"es\",\"value\":\"Archivos o directorios accesibles para terceros, vulnerabilidad de administración incorrecta de privilegios en clientes Apache Kafka. Los clientes Apache Kafka aceptan datos de configuración para personalizar el comportamiento e incluyen complementos ConfigProvider para manipular estas configuraciones. Apache Kafka también proporciona implementaciones FileConfigProvider, DirectoryConfigProvider y EnvVarConfigProvider que incluyen la capacidad de leer desde el disco o variables de entorno. En aplicaciones donde las configuraciones de los clientes Apache Kafka pueden ser especificadas por un tercero que no es de confianza, los atacantes pueden usar estos ConfigProviders para leer contenido arbitrario del disco y las variables de entorno. En particular, esta falla puede usarse en Apache Kafka Connect para escalar desde el acceso a la API REST al acceso al sistema de archivos/entorno, lo que puede ser indeseable en ciertos entornos, incluidos los productos SaaS. Este problema afecta a los clientes Apache Kafka: desde 2.3.0 hasta 3.5.2, 3.6.2, 3.7.0. Se recomienda a los usuarios con aplicaciones afectadas que actualicen los clientes de Kafka a la versión &gt;=3.8.0 y configuren la propiedad del sistema JVM \\\"org.apache.kafka.automatic.config.providers=none\\\". También se recomienda a los usuarios de Kafka Connect con una de las implementaciones de ConfigProvider enumeradas en la configuración de su trabajador que agreguen \\\"allowlist.pattern\\\" y \\\"allowed.paths\\\" adecuados para restringir su funcionamiento a los límites adecuados. Para los usuarios de Kafka Clients o Kafka Connect en entornos que confían a los usuarios el acceso a discos y variables de entorno, no se recomienda configurar la propiedad del sistema. Para los usuarios de Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams y las herramientas de línea de comandos de Kafka, no se recomienda configurar la propiedad del sistema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security@apache.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-269\"},{\"lang\":\"en\",\"value\":\"CWE-552\"}]}],\"references\":[{\"url\":\"https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv\",\"source\":\"security@apache.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/11/18/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20250131-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
      vulnrichment: {
         containers: "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.openwall.com/lists/oss-security/2024/11/18/5\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20250131-0001/\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-01-31T15:02:44.982Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-31141\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-19T14:14:13.118831Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-19T14:15:27.807Z\"}}], \"cna\": {\"title\": \"Apache Kafka Clients: Privilege escalation to filesystem read-access via automatic ConfigProvider\", \"source\": {\"discovery\": \"INTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Greg Harris\"}, {\"lang\": \"en\", \"type\": \"remediation reviewer\", \"value\": \"Mickael Maison\"}, {\"lang\": \"en\", \"type\": \"remediation reviewer\", \"value\": \"Chris Egerton\"}], \"metrics\": [{\"other\": {\"type\": \"Textual description of severity\", \"content\": {\"text\": \"moderate\"}}}], \"affected\": [{\"vendor\": \"Apache Software Foundation\", \"product\": \"Apache Kafka Clients\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.3.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"3.5.2\"}, {\"status\": \"affected\", \"version\": \"3.6.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"3.6.2\"}, {\"status\": \"affected\", \"version\": \"3.7.0\", \"versionType\": \"semver\"}], \"packageName\": \"org.apache.kafka:kafka-clients\", \"collectionURL\": \"https://repo.maven.apache.org/maven2\", \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv\", \"tags\": [\"vendor-advisory\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.\\n\\nApache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables.\\nIn applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.\\n\\nIn particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products.\\nThis issue affects Apache Kafka Clients: from 2.3.0 through 3.5.2, 3.6.2, 3.7.0.\\n\\n\\nUsers with affected applications are recommended to upgrade kafka-clients to version >=3.8.0, and set the JVM system property \\\"org.apache.kafka.automatic.config.providers=none\\\".\\nUsers of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate \\\"allowlist.pattern\\\" and \\\"allowed.paths\\\" to restrict their operation to appropriate bounds.\\n\\n\\nFor users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property.\\nFor users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.<br><br>Apache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables.<br>In applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.<br><br>In particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products.<br><p>This issue affects Apache Kafka Clients: from 2.3.0 through 3.5.2, 3.6.2, 3.7.0.<br></p><p>Users with affected applications are recommended to upgrade kafka-clients to version &gt;=3.8.0, and set the JVM system property \\\"org.apache.kafka.automatic.config.providers=none\\\".<br>Users of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate \\\"allowlist.pattern\\\" and \\\"allowed.paths\\\" to restrict their operation to appropriate bounds.<br></p>For users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property.<br><span style=\\\"background-color: var(--wht);\\\">For users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.<br></span>\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-552\", \"description\": \"CWE-552 Files or Directories Accessible to External Parties\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-269\", \"description\": \"CWE-269 Improper Privilege Management\"}]}], \"providerMetadata\": {\"orgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"shortName\": \"apache\", \"dateUpdated\": \"2024-11-19T08:40:50.695Z\"}}}",
         cveMetadata: "{\"cveId\": \"CVE-2024-31141\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-31T15:02:44.982Z\", \"dateReserved\": \"2024-03-28T16:57:34.016Z\", \"assignerOrgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"datePublished\": \"2024-11-19T08:40:50.695Z\", \"assignerShortName\": \"apache\"}",
         dataType: "CVE_RECORD",
         dataVersion: "5.1",
      },
   },
}

wid-sec-w-2024-3496

Vulnerability from csaf_certbund

Published

2024-11-18 23:00

Modified

2024-12-05 23:00

Summary

Apache Kafka: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Apache Kafka ist eine verteilte Streaming-Plattform mit einer Publish-Subcribe-Architektur (Pub-Sub).

Angriff

Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Apache Kafka ausnutzen, um Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme

- Linux - UNIX

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         text: "mittel",
      },
      category: "csaf_base",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "de-DE",
      notes: [
         {
            category: "legal_disclaimer",
            text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.",
         },
         {
            category: "description",
            text: "Apache Kafka ist eine verteilte Streaming-Plattform mit einer Publish-Subcribe-Architektur (Pub-Sub).",
            title: "Produktbeschreibung",
         },
         {
            category: "summary",
            text: "Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Apache Kafka ausnutzen, um Sicherheitsvorkehrungen zu umgehen.",
            title: "Angriff",
         },
         {
            category: "general",
            text: "- Linux\n- UNIX",
            title: "Betroffene Betriebssysteme",
         },
      ],
      publisher: {
         category: "other",
         contact_details: "csaf-provider@cert-bund.de",
         name: "Bundesamt für Sicherheit in der Informationstechnik",
         namespace: "https://www.bsi.bund.de",
      },
      references: [
         {
            category: "self",
            summary: "WID-SEC-W-2024-3496 - CSAF Version",
            url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3496.json",
         },
         {
            category: "self",
            summary: "WID-SEC-2024-3496 - Portal Version",
            url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3496",
         },
         {
            category: "external",
            summary: "Mailing Liste OSS Security vom 2024-11-18",
            url: "https://seclists.org/oss-sec/2024/q4/106",
         },
         {
            category: "external",
            summary: "IBM Security Bulletin 7176815 vom 2024-11-21",
            url: "https://www.ibm.com/support/pages/node/7176815",
         },
         {
            category: "external",
            summary: "Red Hat Security Advisory RHSA-2024:10700 vom 2024-12-02",
            url: "https://access.redhat.com/errata/RHSA-2024:10700",
         },
         {
            category: "external",
            summary: "Red Hat Security Advisory RHSA-2024:10861 vom 2024-12-05",
            url: "https://access.redhat.com/errata/RHSA-2024:10861",
         },
      ],
      source_lang: "en-US",
      title: "Apache Kafka: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen",
      tracking: {
         current_release_date: "2024-12-05T23:00:00.000+00:00",
         generator: {
            date: "2024-12-06T09:11:10.702+00:00",
            engine: {
               name: "BSI-WID",
               version: "1.3.10",
            },
         },
         id: "WID-SEC-W-2024-3496",
         initial_release_date: "2024-11-18T23:00:00.000+00:00",
         revision_history: [
            {
               date: "2024-11-18T23:00:00.000+00:00",
               number: "1",
               summary: "Initiale Fassung",
            },
            {
               date: "2024-11-21T23:00:00.000+00:00",
               number: "2",
               summary: "Neue Updates von IBM aufgenommen",
            },
            {
               date: "2024-12-02T23:00:00.000+00:00",
               number: "3",
               summary: "Neue Updates von Red Hat aufgenommen",
            },
            {
               date: "2024-12-05T23:00:00.000+00:00",
               number: "4",
               summary: "Neue Updates von Red Hat aufgenommen",
            },
         ],
         status: "final",
         version: "4",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<3.8.0",
                        product: {
                           name: "Apache Kafka <3.8.0",
                           product_id: "T039252",
                        },
                     },
                     {
                        category: "product_version",
                        name: "3.8.0",
                        product: {
                           name: "Apache Kafka 3.8.0",
                           product_id: "T039252-fixed",
                           product_identification_helper: {
                              cpe: "cpe:/a:apache:kafka:3.8.0",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "Kafka",
               },
            ],
            category: "vendor",
            name: "Apache",
         },
         {
            branches: [
               {
                  category: "product_name",
                  name: "IBM App Connect Enterprise",
                  product: {
                     name: "IBM App Connect Enterprise",
                     product_id: "T032495",
                     product_identification_helper: {
                        cpe: "cpe:/a:ibm:app_connect_enterprise:-",
                     },
                  },
               },
            ],
            category: "vendor",
            name: "IBM",
         },
         {
            branches: [
               {
                  category: "product_name",
                  name: "Red Hat Enterprise Linux",
                  product: {
                     name: "Red Hat Enterprise Linux",
                     product_id: "67646",
                     product_identification_helper: {
                        cpe: "cpe:/o:redhat:enterprise_linux:-",
                     },
                  },
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "Camel for Spring Boot 1",
                        product: {
                           name: "Red Hat Integration Camel for Spring Boot 1",
                           product_id: "T035240",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:integration:camel_for_spring_boot_1",
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "Integration",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-31141",
         notes: [
            {
               category: "description",
               text: "Es existiert eine Schwachstelle in Apache Kafka. Diese besteht aufgrund einer unsachgemäßen Privilegienverwaltung durch den \"automatic ConfigProvider\". Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsmaßnahmen zu umgehen und lesenden Zugriff auf das Dateisystem zu erlangen.",
            },
         ],
         product_status: {
            known_affected: [
               "T039252",
               "67646",
               "T035240",
               "T032495",
            ],
         },
         release_date: "2024-11-18T23:00:00.000+00:00",
         title: "CVE-2024-31141",
      },
   ],
}

rhsa-2024_10700

Vulnerability from csaf_redhat

Published

2024-12-02 16:06

Modified

2024-12-12 09:48

Summary

Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.

Notes

Topic

Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available. The purpose of this text-only errata is to inform you about the security issues fixed. Security Fix(es): * org.apache.kafka/kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider (CVE-2024-31141) * org.springframework/spring-webmvc: Path traversal vulnerability in functional web frameworks (CVE-2024-38819) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nThe purpose of this text-only errata is to inform you about the security issues fixed.\n\nSecurity Fix(es):\n\n* org.apache.kafka/kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider (CVE-2024-31141)\n\n* org.springframework/spring-webmvc: Path traversal vulnerability in functional web frameworks (CVE-2024-38819)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2024:10700",
            url: "https://access.redhat.com/errata/RHSA-2024:10700",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#important",
            url: "https://access.redhat.com/security/updates/classification/#important",
         },
         {
            category: "external",
            summary: "2327264",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
         },
         {
            category: "external",
            summary: "2327614",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10700.json",
         },
      ],
      title: "Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.",
      tracking: {
         current_release_date: "2024-12-12T09:48:45+00:00",
         generator: {
            date: "2024-12-12T09:48:45+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.2.3",
            },
         },
         id: "RHSA-2024:10700",
         initial_release_date: "2024-12-02T16:06:11+00:00",
         revision_history: [
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2024-12-12T09:48:45+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                        product: {
                           name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_id: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:apache_camel_spring_boot:4.8",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Red Hat Build of Apache Camel",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-31141",
         cwe: {
            id: "CWE-552",
            name: "Files or Directories Accessible to External Parties",
         },
         discovery_date: "2024-11-19T09:00:35.857468+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327264",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Apache Kafka Clients. Apache Kafka Clients accepts configuration data for customizing behavior and includes ConfigProvider plugins to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations, which include the ability to read from disk or environment variables. In applications where an untrusted party can specify Apache Kafka Clients configurations, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "RHBZ#2327264",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
               url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
            },
         ],
         release_date: "2024-11-19T08:40:50.695000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         discovery_date: "2024-11-20T14:13:08.656000+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327614",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in the Spring Framework. Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. This flaw allows an attacker to craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
               title: "Vulnerability summary",
            },
            {
               category: "other",
               text: "This vulnerability is of important severity because it enables path traversal attacks that allow unauthorized access to arbitrary files on the server. Exploiting this flaw could expose sensitive information such as application configuration files, authentication credentials, or environment secrets, potentially compromising the entire system. Moreover, if the application process has elevated privileges, an attacker could access system files or even gain further control over the server.",
               title: "Statement",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-38819",
            },
            {
               category: "external",
               summary: "RHBZ#2327614",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
            },
         ],
         release_date: "2024-10-17T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
            {
               category: "workaround",
               details: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Important",
            },
         ],
         title: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
      },
   ],
}

rhsa-2024:10700

Vulnerability from csaf_redhat

Published

2024-12-02 16:06

Modified

2025-03-05 22:39

Summary

Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.

Notes

Topic

Details

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nThe purpose of this text-only errata is to inform you about the security issues fixed.\n\nSecurity Fix(es):\n\n* org.apache.kafka/kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider (CVE-2024-31141)\n\n* org.springframework/spring-webmvc: Path traversal vulnerability in functional web frameworks (CVE-2024-38819)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2024:10700",
            url: "https://access.redhat.com/errata/RHSA-2024:10700",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#important",
            url: "https://access.redhat.com/security/updates/classification/#important",
         },
         {
            category: "external",
            summary: "2327264",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
         },
         {
            category: "external",
            summary: "2327614",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10700.json",
         },
      ],
      title: "Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.",
      tracking: {
         current_release_date: "2025-03-05T22:39:56+00:00",
         generator: {
            date: "2025-03-05T22:39:56+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.4.0",
            },
         },
         id: "RHSA-2024:10700",
         initial_release_date: "2024-12-02T16:06:11+00:00",
         revision_history: [
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2025-03-05T22:39:56+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                        product: {
                           name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_id: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:apache_camel_spring_boot:4.8",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Red Hat Build of Apache Camel",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-31141",
         cwe: {
            id: "CWE-552",
            name: "Files or Directories Accessible to External Parties",
         },
         discovery_date: "2024-11-19T09:00:35.857468+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327264",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Apache Kafka Clients. Apache Kafka Clients accepts configuration data for customizing behavior and includes ConfigProvider plugins to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations, which include the ability to read from disk or environment variables. In applications where an untrusted party can specify Apache Kafka Clients configurations, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "RHBZ#2327264",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
               url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
            },
         ],
         release_date: "2024-11-19T08:40:50.695000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         discovery_date: "2024-11-20T14:13:08.656000+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327614",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in the Spring Framework. Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. This flaw allows an attacker to craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
               title: "Vulnerability summary",
            },
            {
               category: "other",
               text: "This vulnerability is of important severity because it enables path traversal attacks that allow unauthorized access to arbitrary files on the server. Exploiting this flaw could expose sensitive information such as application configuration files, authentication credentials, or environment secrets, potentially compromising the entire system. Moreover, if the application process has elevated privileges, an attacker could access system files or even gain further control over the server.",
               title: "Statement",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-38819",
            },
            {
               category: "external",
               summary: "RHBZ#2327614",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
            },
         ],
         release_date: "2024-10-17T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
            {
               category: "workaround",
               details: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Important",
            },
         ],
         title: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
      },
   ],
}

rhsa-2025:2416

Vulnerability from csaf_redhat

Published

2025-03-05 20:59

Modified

2025-04-17 08:36

Summary

Red Hat Security Advisory: Streams for Apache Kafka 2.9.0 release and security update

Notes

Topic

Streams for Apache Kafka 2.9.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

Red Hat Streams for Apache Kafka, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency. This release of Red Hat Streams for Apache Kafka 2.9.0 serves as a replacement for Red Hat Streams for Apache Kafka 2.8.0, and includes security and bug fixes, and enhancements. Security Fix(es): * Cruise Control:cio.netty:netty-common:4.1.115.Final-redhat [amq-st-2] "(CVE-2023-52428)" * Cruise Control:com.nimbusds:nimbus-jose-jwt:9.37.2.redhat [amq-st-2] "(CVE-2024-47535)" * Cruise Control:org.apache.kafka:kafka-clients:3.5.2.redhat+ [amq-st-2] "(CVE-2024-31141)" * Cruise Control:io:commons-io:2.15.1.redhat+ [amq-st-2] "(CVE-2024-47554)" * Cruise Control:org.eclipse.jetty:jetty-server:9.4.56.v20240826-redhat+ [amq-st-2] "(CVE-2024-8184)" * Cruise Control:org.eclipse.jetty/jetty-server: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks [amq-st-2] "(CVE-2024-8184)" * Kafka Exporter:golang-github-danielqsj-kafka_exporter: Golang FIPS zeroed buffer [amq-st-2] "(CVE-2024-9355)" * Kafka Exporter:golang-github-danielqsj-kafka_exporter: net/http: Denial of service due to improper 100-continue handling in net/http [amq-st-2] "(CVE-2024-24791)"

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Streams for Apache Kafka 2.9.0 is now available from the Red Hat Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "Red Hat Streams for Apache Kafka, based on the Apache Kafka project, offers a distributed\nbackbone that allows microservices and other applications to share data with\nextremely high throughput and extremely low latency.\n\nThis release of Red Hat Streams for Apache Kafka 2.9.0 serves as a replacement for Red Hat Streams for Apache Kafka 2.8.0, and includes security and bug fixes, and enhancements.\n\nSecurity Fix(es):\n* Cruise Control:cio.netty:netty-common:4.1.115.Final-redhat [amq-st-2] \"(CVE-2023-52428)\"\n\n* Cruise Control:com.nimbusds:nimbus-jose-jwt:9.37.2.redhat [amq-st-2] \"(CVE-2024-47535)\"\n\n* Cruise Control:org.apache.kafka:kafka-clients:3.5.2.redhat+ [amq-st-2] \"(CVE-2024-31141)\"\n\n* Cruise Control:io:commons-io:2.15.1.redhat+ [amq-st-2] \"(CVE-2024-47554)\"\n\n* Cruise Control:org.eclipse.jetty:jetty-server:9.4.56.v20240826-redhat+ [amq-st-2] \"(CVE-2024-8184)\"\n\n* Cruise Control:org.eclipse.jetty/jetty-server: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks [amq-st-2] \"(CVE-2024-8184)\"\n\n* Kafka Exporter:golang-github-danielqsj-kafka_exporter: Golang FIPS zeroed buffer [amq-st-2] \"(CVE-2024-9355)\"\n\n* Kafka Exporter:golang-github-danielqsj-kafka_exporter: net/http: Denial of service due to improper 100-continue handling in net/http [amq-st-2] \"(CVE-2024-24791)\"",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2025:2416",
            url: "https://access.redhat.com/errata/RHSA-2025:2416",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#important",
            url: "https://access.redhat.com/security/updates/classification/#important",
         },
         {
            category: "external",
            summary: "2295310",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2295310",
         },
         {
            category: "external",
            summary: "2309764",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2309764",
         },
         {
            category: "external",
            summary: "2315719",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2315719",
         },
         {
            category: "external",
            summary: "2316271",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2316271",
         },
         {
            category: "external",
            summary: "2318564",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2318564",
         },
         {
            category: "external",
            summary: "2325538",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2325538",
         },
         {
            category: "external",
            summary: "2327264",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_2416.json",
         },
      ],
      title: "Red Hat Security Advisory: Streams for Apache Kafka 2.9.0 release and security update",
      tracking: {
         current_release_date: "2025-04-17T08:36:09+00:00",
         generator: {
            date: "2025-04-17T08:36:09+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.4.2",
            },
         },
         id: "RHSA-2025:2416",
         initial_release_date: "2025-03-05T20:59:06+00:00",
         revision_history: [
            {
               date: "2025-03-05T20:59:06+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2025-03-05T20:59:06+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2025-04-17T08:36:09+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Streams for Apache Kafka 2.9.0",
                        product: {
                           name: "Streams for Apache Kafka 2.9.0",
                           product_id: "Streams for Apache Kafka 2.9.0",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:amq_streams:2",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Streams for Apache Kafka",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2023-52428",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         discovery_date: "2024-09-04T17:02:58.468000+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2309764",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A vulnerability was found in the Nimbus Jose JWT package. This issue could allow an attacker to use a malicious large JWE p2c header value for PasswordBasedDecrypter and cause a Denial of Service (DoS).",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "nimbus-jose-jwt: large JWE p2c header value causes Denial of Service",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Streams for Apache Kafka 2.9.0",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2023-52428",
            },
            {
               category: "external",
               summary: "RHBZ#2309764",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2309764",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2023-52428",
               url: "https://www.cve.org/CVERecord?id=CVE-2023-52428",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-52428",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2023-52428",
            },
         ],
         release_date: "2024-02-11T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2025-03-05T20:59:06+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2025:2416",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "NONE",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Important",
            },
         ],
         title: "nimbus-jose-jwt: large JWE p2c header value causes Denial of Service",
      },
      {
         cve: "CVE-2024-8184",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         discovery_date: "2024-10-14T16:01:01.239238+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2318564",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Jetty's ThreadLimitHandler.getRemote(). This flaw allows unauthorized users to cause remote denial of service (DoS) attacks. By repeatedly sending crafted requests, attackers can trigger OutofMemory errors and exhaust the server's memory.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks",
               title: "Vulnerability summary",
            },
            {
               category: "other",
               text: "This vulnerability is rated as moderate rather than important because it requires specific conditions to be met, including continuous, crafted requests that deliberately target memory allocation to exhaust resources. While it can cause a denial of service, it does not lead to direct compromise of sensitive data, unauthorized access, or code execution.",
               title: "Statement",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Streams for Apache Kafka 2.9.0",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-8184",
            },
            {
               category: "external",
               summary: "RHBZ#2318564",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2318564",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-8184",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-8184",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-8184",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-8184",
            },
            {
               category: "external",
               summary: "https://github.com/jetty/jetty.project/pull/11723",
               url: "https://github.com/jetty/jetty.project/pull/11723",
            },
            {
               category: "external",
               summary: "https://github.com/jetty/jetty.project/security/advisories/GHSA-g8m5-722r-8whq",
               url: "https://github.com/jetty/jetty.project/security/advisories/GHSA-g8m5-722r-8whq",
            },
            {
               category: "external",
               summary: "https://gitlab.eclipse.org/security/cve-assignement/-/issues/30",
               url: "https://gitlab.eclipse.org/security/cve-assignement/-/issues/30",
            },
         ],
         release_date: "2024-10-14T15:09:37.861000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2025-03-05T20:59:06+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2025:2416",
            },
            {
               category: "workaround",
               details: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks",
      },
      {
         acknowledgments: [
            {
               names: [
                  "David Benoit",
               ],
               organization: "Red Hat",
               summary: "This issue was discovered by Red Hat.",
            },
         ],
         cve: "CVE-2024-9355",
         cwe: {
            id: "CWE-457",
            name: "Use of Uninitialized Variable",
         },
         discovery_date: "2024-09-30T17:51:17.811000+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2315719",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes when comparing a trusted computed hmac sum to an untrusted input sum if an attacker can send a zeroed buffer in place of a pre-computed sum.  It is also possible to force a derived key to be all zeros instead of an unpredictable value.  This may have follow-on implications for the Go TLS stack.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "golang-fips: Golang FIPS zeroed buffer",
               title: "Vulnerability summary",
            },
            {
               category: "other",
               text: "This issue is specific to the Go language and only affects the test code in cri-o and conmon, not the production code. Since both projects use Go exclusively for testing purposes, this issue does not impact their production environment. Therefore, cri-o and conmon are not affected by this vulnerability.",
               title: "Statement",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Streams for Apache Kafka 2.9.0",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-9355",
            },
            {
               category: "external",
               summary: "RHBZ#2315719",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2315719",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-9355",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-9355",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-9355",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-9355",
            },
         ],
         release_date: "2024-09-30T20:53:42.833000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2025-03-05T20:59:06+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2025:2416",
            },
            {
               category: "workaround",
               details: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "HIGH",
                  attackVector: "LOCAL",
                  availabilityImpact: "LOW",
                  baseScore: 6.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
                  version: "3.1",
               },
               products: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "golang-fips: Golang FIPS zeroed buffer",
      },
      {
         cve: "CVE-2024-24791",
         cwe: {
            id: "CWE-20",
            name: "Improper Input Validation",
         },
         discovery_date: "2024-07-02T00:00:00+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2295310",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "net/http: Denial of service due to improper 100-continue handling in net/http",
               title: "Vulnerability summary",
            },
            {
               category: "other",
               text: "An attacker would need to control a malicious server and induce a client to connect to it, requiring some amount of preparation outside of the attacker's control. This reduces the severity score of this flaw to Moderate.",
               title: "Statement",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Streams for Apache Kafka 2.9.0",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-24791",
            },
            {
               category: "external",
               summary: "RHBZ#2295310",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2295310",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-24791",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-24791",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-24791",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-24791",
            },
            {
               category: "external",
               summary: "https://go.dev/cl/591255",
               url: "https://go.dev/cl/591255",
            },
            {
               category: "external",
               summary: "https://go.dev/issue/67555",
               url: "https://go.dev/issue/67555",
            },
            {
               category: "external",
               summary: "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ",
               url: "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ",
            },
         ],
         release_date: "2024-07-02T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2025-03-05T20:59:06+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2025:2416",
            },
            {
               category: "workaround",
               details: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "net/http: Denial of service due to improper 100-continue handling in net/http",
      },
      {
         cve: "CVE-2024-31141",
         cwe: {
            id: "CWE-552",
            name: "Files or Directories Accessible to External Parties",
         },
         discovery_date: "2024-11-19T09:00:35.857468+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327264",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Apache Kafka Clients. Apache Kafka Clients accepts configuration data for customizing behavior and includes ConfigProvider plugins to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations, which include the ability to read from disk or environment variables. In applications where an untrusted party can specify Apache Kafka Clients configurations, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Streams for Apache Kafka 2.9.0",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "RHBZ#2327264",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
               url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
            },
         ],
         release_date: "2024-11-19T08:40:50.695000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2025-03-05T20:59:06+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2025:2416",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
      },
      {
         cve: "CVE-2024-47535",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         discovery_date: "2024-11-12T16:01:18.772613+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2325538",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Netty. An unsafe reading of the environment file could potentially cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crashes.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "netty: Denial of Service attack on windows app using Netty",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Streams for Apache Kafka 2.9.0",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-47535",
            },
            {
               category: "external",
               summary: "RHBZ#2325538",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2325538",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-47535",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-47535",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-47535",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-47535",
            },
            {
               category: "external",
               summary: "https://github.com/netty/netty/commit/fbf7a704a82e7449b48bd0bbb679f5661c6d61a3",
               url: "https://github.com/netty/netty/commit/fbf7a704a82e7449b48bd0bbb679f5661c6d61a3",
            },
            {
               category: "external",
               summary: "https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv",
               url: "https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv",
            },
         ],
         release_date: "2024-11-12T15:50:08.334000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2025-03-05T20:59:06+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2025:2416",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  availabilityImpact: "HIGH",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "netty: Denial of Service attack on windows app using Netty",
      },
      {
         cve: "CVE-2024-47554",
         cwe: {
            id: "CWE-400",
            name: "Uncontrolled Resource Consumption",
         },
         discovery_date: "2024-10-03T12:00:40.921058+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2316271",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A vulnerability was found in the Apache Commons IO component in the org.apache.commons.io.input.XmlStreamReader class. Excessive CPU resource consumption can lead to a denial of service when an untrusted input is processed.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Streams for Apache Kafka 2.9.0",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-47554",
            },
            {
               category: "external",
               summary: "RHBZ#2316271",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2316271",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-47554",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-47554",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-47554",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-47554",
            },
            {
               category: "external",
               summary: "https://lists.apache.org/thread/6ozr91rr9cj5lm0zyhv30bsp317hk5z1",
               url: "https://lists.apache.org/thread/6ozr91rr9cj5lm0zyhv30bsp317hk5z1",
            },
         ],
         release_date: "2024-10-03T11:32:48.936000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2025-03-05T20:59:06+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Streams for Apache Kafka 2.9.0",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2025:2416",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "LOW",
                  baseScore: 4.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "REQUIRED",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
                  version: "3.1",
               },
               products: [
                  "Streams for Apache Kafka 2.9.0",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader",
      },
   ],
}

RHSA-2024:10700

Vulnerability from csaf_redhat

Published

2024-12-02 16:06

Modified

2025-03-05 22:39

Summary

Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.

Notes

Topic

Details

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://access.redhat.com/security/updates/classification/",
         text: "Important",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright © Red Hat, Inc. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
            title: "Topic",
         },
         {
            category: "general",
            text: "Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available.\n\nThe purpose of this text-only errata is to inform you about the security issues fixed.\n\nSecurity Fix(es):\n\n* org.apache.kafka/kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider (CVE-2024-31141)\n\n* org.springframework/spring-webmvc: Path traversal vulnerability in functional web frameworks (CVE-2024-38819)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
            title: "Details",
         },
         {
            category: "legal_disclaimer",
            text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
            title: "Terms of Use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://access.redhat.com/security/team/contact/",
         issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
         name: "Red Hat Product Security",
         namespace: "https://www.redhat.com",
      },
      references: [
         {
            category: "self",
            summary: "https://access.redhat.com/errata/RHSA-2024:10700",
            url: "https://access.redhat.com/errata/RHSA-2024:10700",
         },
         {
            category: "external",
            summary: "https://access.redhat.com/security/updates/classification/#important",
            url: "https://access.redhat.com/security/updates/classification/#important",
         },
         {
            category: "external",
            summary: "2327264",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
         },
         {
            category: "external",
            summary: "2327614",
            url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
         },
         {
            category: "self",
            summary: "Canonical URL",
            url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10700.json",
         },
      ],
      title: "Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.",
      tracking: {
         current_release_date: "2025-03-05T22:39:56+00:00",
         generator: {
            date: "2025-03-05T22:39:56+00:00",
            engine: {
               name: "Red Hat SDEngine",
               version: "4.4.0",
            },
         },
         id: "RHSA-2024:10700",
         initial_release_date: "2024-12-02T16:06:11+00:00",
         revision_history: [
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "1",
               summary: "Initial version",
            },
            {
               date: "2024-12-02T16:06:11+00:00",
               number: "2",
               summary: "Last updated version",
            },
            {
               date: "2025-03-05T22:39:56+00:00",
               number: "3",
               summary: "Last generated version",
            },
         ],
         status: "final",
         version: "3",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                        product: {
                           name: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_id: "Red Hat build of Apache Camel 4.8 for Spring Boot",
                           product_identification_helper: {
                              cpe: "cpe:/a:redhat:apache_camel_spring_boot:4.8",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "Red Hat Build of Apache Camel",
               },
            ],
            category: "vendor",
            name: "Red Hat",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2024-31141",
         cwe: {
            id: "CWE-552",
            name: "Files or Directories Accessible to External Parties",
         },
         discovery_date: "2024-11-19T09:00:35.857468+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327264",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in Apache Kafka Clients. Apache Kafka Clients accepts configuration data for customizing behavior and includes ConfigProvider plugins to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations, which include the ability to read from disk or environment variables. In applications where an untrusted party can specify Apache Kafka Clients configurations, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
               title: "Vulnerability summary",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "RHBZ#2327264",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327264",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
            },
            {
               category: "external",
               summary: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
               url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
            },
         ],
         release_date: "2024-11-19T08:40:50.695000+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Moderate",
            },
         ],
         title: "kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider",
      },
      {
         cve: "CVE-2024-38819",
         cwe: {
            id: "CWE-22",
            name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')",
         },
         discovery_date: "2024-11-20T14:13:08.656000+00:00",
         ids: [
            {
               system_name: "Red Hat Bugzilla ID",
               text: "2327614",
            },
         ],
         notes: [
            {
               category: "description",
               text: "A flaw was found in the Spring Framework. Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. This flaw allows an attacker to craft malicious HTTP requests and obtain any file on the file system that is also accessible to the process in which the Spring application is running.",
               title: "Vulnerability description",
            },
            {
               category: "summary",
               text: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
               title: "Vulnerability summary",
            },
            {
               category: "other",
               text: "This vulnerability is of important severity because it enables path traversal attacks that allow unauthorized access to arbitrary files on the server. Exploiting this flaw could expose sensitive information such as application configuration files, authentication credentials, or environment secrets, potentially compromising the entire system. Moreover, if the application process has elevated privileges, an attacker could access system files or even gain further control over the server.",
               title: "Statement",
            },
            {
               category: "general",
               text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
               title: "CVSS score applicability",
            },
         ],
         product_status: {
            fixed: [
               "Red Hat build of Apache Camel 4.8 for Spring Boot",
            ],
         },
         references: [
            {
               category: "self",
               summary: "Canonical URL",
               url: "https://access.redhat.com/security/cve/CVE-2024-38819",
            },
            {
               category: "external",
               summary: "RHBZ#2327614",
               url: "https://bugzilla.redhat.com/show_bug.cgi?id=2327614",
            },
            {
               category: "external",
               summary: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
               url: "https://www.cve.org/CVERecord?id=CVE-2024-38819",
            },
            {
               category: "external",
               summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
               url: "https://nvd.nist.gov/vuln/detail/CVE-2024-38819",
            },
         ],
         release_date: "2024-10-17T00:00:00+00:00",
         remediations: [
            {
               category: "vendor_fix",
               date: "2024-12-02T16:06:11+00:00",
               details: "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
               restart_required: {
                  category: "none",
               },
               url: "https://access.redhat.com/errata/RHSA-2024:10700",
            },
            {
               category: "workaround",
               details: "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
               product_ids: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "Red Hat build of Apache Camel 4.8 for Spring Boot",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               details: "Important",
            },
         ],
         title: "org.springframework:spring-webmvc: Path traversal vulnerability in functional web frameworks",
      },
   ],
}

fkie_cve-2024-31141

Vulnerability from fkie_nvd

Published

2024-11-19 09:15

Modified

2025-01-31 15:15

Severity ?

6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Summary

References

▼	URL	Tags
	security@apache.org	https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv
	af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2024/11/18/5
	af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20250131-0001/

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.\n\nApache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables.\nIn applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.\n\nIn particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products.\nThis issue affects Apache Kafka Clients: from 2.3.0 through 3.5.2, 3.6.2, 3.7.0.\n\n\nUsers with affected applications are recommended to upgrade kafka-clients to version >=3.8.0, and set the JVM system property \"org.apache.kafka.automatic.config.providers=none\".\nUsers of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate \"allowlist.pattern\" and \"allowed.paths\" to restrict their operation to appropriate bounds.\n\n\nFor users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property.\nFor users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.",
      },
      {
         lang: "es",
         value: "Archivos o directorios accesibles para terceros, vulnerabilidad de administración incorrecta de privilegios en clientes Apache Kafka. Los clientes Apache Kafka aceptan datos de configuración para personalizar el comportamiento e incluyen complementos ConfigProvider para manipular estas configuraciones. Apache Kafka también proporciona implementaciones FileConfigProvider, DirectoryConfigProvider y EnvVarConfigProvider que incluyen la capacidad de leer desde el disco o variables de entorno. En aplicaciones donde las configuraciones de los clientes Apache Kafka pueden ser especificadas por un tercero que no es de confianza, los atacantes pueden usar estos ConfigProviders para leer contenido arbitrario del disco y las variables de entorno. En particular, esta falla puede usarse en Apache Kafka Connect para escalar desde el acceso a la API REST al acceso al sistema de archivos/entorno, lo que puede ser indeseable en ciertos entornos, incluidos los productos SaaS. Este problema afecta a los clientes Apache Kafka: desde 2.3.0 hasta 3.5.2, 3.6.2, 3.7.0. Se recomienda a los usuarios con aplicaciones afectadas que actualicen los clientes de Kafka a la versión &gt;=3.8.0 y configuren la propiedad del sistema JVM \"org.apache.kafka.automatic.config.providers=none\". También se recomienda a los usuarios de Kafka Connect con una de las implementaciones de ConfigProvider enumeradas en la configuración de su trabajador que agreguen \"allowlist.pattern\" y \"allowed.paths\" adecuados para restringir su funcionamiento a los límites adecuados. Para los usuarios de Kafka Clients o Kafka Connect en entornos que confían a los usuarios el acceso a discos y variables de entorno, no se recomienda configurar la propiedad del sistema. Para los usuarios de Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams y las herramientas de línea de comandos de Kafka, no se recomienda configurar la propiedad del sistema.",
      },
   ],
   id: "CVE-2024-31141",
   lastModified: "2025-01-31T15:15:12.987",
   metrics: {
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "NONE",
               baseScore: 6.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 2.8,
            impactScore: 3.6,
            source: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
            type: "Secondary",
         },
      ],
   },
   published: "2024-11-19T09:15:03.860",
   references: [
      {
         source: "security@apache.org",
         url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "http://www.openwall.com/lists/oss-security/2024/11/18/5",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         url: "https://security.netapp.com/advisory/ntap-20250131-0001/",
      },
   ],
   sourceIdentifier: "security@apache.org",
   vulnStatus: "Awaiting Analysis",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-269",
            },
            {
               lang: "en",
               value: "CWE-552",
            },
         ],
         source: "security@apache.org",
         type: "Secondary",
      },
   ],
}

gsd-2024-31141

Vulnerability from gsd

Modified

2024-04-03 05:02

Details

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Aliases

CVE-2024-31141

JSON

To clipboard

{
   gsd: {
      metadata: {
         exploitCode: "unknown",
         remediation: "unknown",
         reportConfidence: "confirmed",
         type: "vulnerability",
      },
      osvSchema: {
         aliases: [
            "CVE-2024-31141",
         ],
         id: "GSD-2024-31141",
         modified: "2024-04-03T05:02:25.461619Z",
         schema_version: "1.4.0",
      },
   },
   namespaces: {
      "cve.org": {
         CVE_data_meta: {
            ASSIGNER: "cve@mitre.org",
            ID: "CVE-2024-31141",
            STATE: "RESERVED",
         },
         data_format: "MITRE",
         data_type: "CVE",
         data_version: "4.0",
         description: {
            description_data: [
               {
                  lang: "eng",
                  value: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.",
               },
            ],
         },
      },
   },
}

ghsa-2x2g-32r7-p4x8

Vulnerability from github

Published

2024-11-19 09:30

Modified

2025-02-18 21:00

Severity ?

6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.8 (Medium) - CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Summary

Apache Kafka Clients: Privilege escalation to filesystem read-access via automatic ConfigProvider

Details

Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.

Apache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables. In applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.

In particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products. This issue affects Apache Kafka Clients: from from 2.3.0 through 3.5.2, 3.6.0 through 3.6.2, and 3.7.0.

Users with affected applications are recommended to upgrade kafka-clients to version >=3.8.0, and set the JVM system property "org.apache.kafka.automatic.config.providers=none". Users of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate "allowlist.pattern" and "allowed.paths" to restrict their operation to appropriate bounds.

For users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property. For users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.

Show details on source website

JSON

To clipboard

{
   affected: [
      {
         package: {
            ecosystem: "Maven",
            name: "org.apache.kafka:kafka-clients",
         },
         ranges: [
            {
               events: [
                  {
                     introduced: "2.3.0",
                  },
                  {
                     fixed: "3.7.1",
                  },
               ],
               type: "ECOSYSTEM",
            },
         ],
      },
   ],
   aliases: [
      "CVE-2024-31141",
   ],
   database_specific: {
      cwe_ids: [
         "CWE-269",
      ],
      github_reviewed: true,
      github_reviewed_at: "2024-11-19T18:02:57Z",
      nvd_published_at: "2024-11-19T09:15:03Z",
      severity: "MODERATE",
   },
   details: "Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.\n\nApache Kafka Clients accept configuration data for customizing behavior, and includes ConfigProvider plugins in order to manipulate these configurations. Apache Kafka also provides FileConfigProvider, DirectoryConfigProvider, and EnvVarConfigProvider implementations which include the ability to read from disk or environment variables.\nIn applications where Apache Kafka Clients configurations can be specified by an untrusted party, attackers may use these ConfigProviders to read arbitrary contents of the disk and environment variables.\n\nIn particular, this flaw may be used in Apache Kafka Connect to escalate from REST API access to filesystem/environment access, which may be undesirable in certain environments, including SaaS products.\nThis issue affects Apache Kafka Clients: from from 2.3.0 through 3.5.2, 3.6.0 through 3.6.2, and 3.7.0.\n\n\nUsers with affected applications are recommended to upgrade kafka-clients to version >=3.8.0, and set the JVM system property \"org.apache.kafka.automatic.config.providers=none\".\nUsers of Kafka Connect with one of the listed ConfigProvider implementations specified in their worker config are also recommended to add appropriate \"allowlist.pattern\" and \"allowed.paths\" to restrict their operation to appropriate bounds.\n\n\nFor users of Kafka Clients or Kafka Connect in environments that trust users with disk and environment variable access, it is not recommended to set the system property.\nFor users of the Kafka Broker, Kafka MirrorMaker 2.0, Kafka Streams, and Kafka command-line tools, it is not recommended to set the system property.",
   id: "GHSA-2x2g-32r7-p4x8",
   modified: "2025-02-18T21:00:05Z",
   published: "2024-11-19T09:30:54Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2024-31141",
      },
      {
         type: "PACKAGE",
         url: "https://github.com/apache/kafka",
      },
      {
         type: "WEB",
         url: "https://lists.apache.org/thread/9whdzfr0zwdhr364604w5ssnzmg4v2lv",
      },
      {
         type: "WEB",
         url: "https://security.netapp.com/advisory/ntap-20250131-0001",
      },
      {
         type: "WEB",
         url: "http://www.openwall.com/lists/oss-security/2024/11/18/5",
      },
   ],
   schema_version: "1.4.0",
   severity: [
      {
         score: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
         type: "CVSS_V3",
      },
      {
         score: "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
         type: "CVSS_V4",
      },
   ],
   summary: "Apache Kafka Clients: Privilege escalation to filesystem read-access via automatic ConfigProvider",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2024-31141 (GCVE-0-2024-31141)

Vulnerability from cvelistv5

Vulnerability from csaf_certbund

Vulnerability from csaf_redhat

Vulnerability from csaf_redhat

Vulnerability from csaf_redhat

Vulnerability from csaf_redhat

Vulnerability from fkie_nvd

Vulnerability from gsd

Vulnerability from github

Tags

Sightings

Nomenclature