Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2021-22135
Vulnerability from cvelistv5
Published
2021-05-13 17:35
Modified
2024-08-03 18:30
Severity ?
EPSS score ?
0.36%
(0.57323)
Summary
Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Elastic | Elasticsearch |
Version: before 7.11.2 and 6.8.15 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T18:30:23.976Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://security.netapp.com/advisory/ntap-20210625-0003/", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Elasticsearch", vendor: "Elastic", versions: [ { status: "affected", version: "before 7.11.2 and 6.8.15", }, ], }, ], descriptions: [ { lang: "en", value: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-200", description: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-06-25T05:06:33", orgId: "271b6943-45a9-4f3a-ab4e-976f3fa05b5a", shortName: "elastic", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://security.netapp.com/advisory/ntap-20210625-0003/", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "security@elastic.co", ID: "CVE-2021-22135", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Elasticsearch", version: { version_data: [ { version_value: "before 7.11.2 and 6.8.15", }, ], }, }, ], }, vendor_name: "Elastic", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor", }, ], }, ], }, references: { reference_data: [ { name: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", refsource: "MISC", url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, { name: "https://security.netapp.com/advisory/ntap-20210625-0003/", refsource: "CONFIRM", url: "https://security.netapp.com/advisory/ntap-20210625-0003/", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "271b6943-45a9-4f3a-ab4e-976f3fa05b5a", assignerShortName: "elastic", cveId: "CVE-2021-22135", datePublished: "2021-05-13T17:35:17", dateReserved: "2021-01-04T00:00:00", dateUpdated: "2024-08-03T18:30:23.976Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2021-22135\",\"sourceIdentifier\":\"bressers@elastic.co\",\"published\":\"2021-05-13T18:15:08.957\",\"lastModified\":\"2024-11-21T05:49:34.430\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.\"},{\"lang\":\"es\",\"value\":\"Elasticsearch versiones anteriores a 7.11.2 y 6.8.15, contienen un fallo en la divulgación de documentos que se encontró en la API suggester y profile de Elasticsearch cuando Document and Field Level Security está habilitada. La API suggester y profile normalmente están deshabilitadas para un índice cuando la seguridad a nivel de documento está habilitada en el índice. Determinadas consultas son capaces de habilitar el profiler y suggester, lo que podría conllevar a revelar la existencia de documentos y campos que el atacante no sería capaz de visualizar\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:N/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"bressers@elastic.co\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.8.15\",\"matchCriteriaId\":\"5F9FE5BF-96E1-47AF-A8DF-3836949E3BE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.11.0\",\"versionEndExcluding\":\"7.11.2\",\"matchCriteriaId\":\"676FCEC5-9858-437A-A06F-9A6C08502E7E\"}]}]}],\"references\":[{\"url\":\"https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125\",\"source\":\"bressers@elastic.co\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210625-0003/\",\"source\":\"bressers@elastic.co\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210625-0003/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}", }, }
fkie_cve-2021-22135
Vulnerability from fkie_nvd
Published
2021-05-13 18:15
Modified
2024-11-21 05:49
Severity ?
Summary
Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| elastic | elasticsearch | * | |
| elastic | elasticsearch | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*", matchCriteriaId: "5F9FE5BF-96E1-47AF-A8DF-3836949E3BE6", versionEndExcluding: "6.8.15", vulnerable: true, }, { criteria: "cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*", matchCriteriaId: "676FCEC5-9858-437A-A06F-9A6C08502E7E", versionEndExcluding: "7.11.2", versionStartIncluding: "7.11.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", }, { lang: "es", value: "Elasticsearch versiones anteriores a 7.11.2 y 6.8.15, contienen un fallo en la divulgación de documentos que se encontró en la API suggester y profile de Elasticsearch cuando Document and Field Level Security está habilitada. La API suggester y profile normalmente están deshabilitadas para un índice cuando la seguridad a nivel de documento está habilitada en el índice. Determinadas consultas son capaces de habilitar el profiler y suggester, lo que podría conllevar a revelar la existencia de documentos y campos que el atacante no sería capaz de visualizar", }, ], id: "CVE-2021-22135", lastModified: "2024-11-21T05:49:34.430", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "NONE", baseScore: 4.3, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:M/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2021-05-13T18:15:08.957", references: [ { source: "bressers@elastic.co", tags: [ "Vendor Advisory", ], url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, { source: "bressers@elastic.co", tags: [ "Third Party Advisory", ], url: "https://security.netapp.com/advisory/ntap-20210625-0003/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://security.netapp.com/advisory/ntap-20210625-0003/", }, ], sourceIdentifier: "bressers@elastic.co", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-200", }, ], source: "bressers@elastic.co", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-200", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
ghsa-62ww-4p3p-7fhj
Vulnerability from github
Published
2021-07-02 18:33
Modified
2021-05-25 20:48
Severity ?
Summary
API information disclosure flaw in Elasticsearch
Details
Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.
{ affected: [ { package: { ecosystem: "Maven", name: "org.elasticsearch:elasticsearch", }, ranges: [ { events: [ { introduced: "7.0.0", }, { fixed: "7.11.2", }, ], type: "ECOSYSTEM", }, ], }, { package: { ecosystem: "Maven", name: "org.elasticsearch:elasticsearch", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "6.8.15", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2021-22135", ], database_specific: { cwe_ids: [ "CWE-200", ], github_reviewed: true, github_reviewed_at: "2021-05-17T20:02:56Z", nvd_published_at: "2021-05-13T18:15:00Z", severity: "MODERATE", }, details: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", id: "GHSA-62ww-4p3p-7fhj", modified: "2021-05-25T20:48:19Z", published: "2021-07-02T18:33:02Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22135", }, { type: "WEB", url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, { type: "WEB", url: "https://security.netapp.com/advisory/ntap-20210625-0003", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", type: "CVSS_V3", }, ], summary: "API information disclosure flaw in Elasticsearch", }
rhsa-2022_5606
Vulnerability from csaf_redhat
Published
2022-07-19 13:40
Modified
2024-11-22 19:49
Summary
Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus 2.7 security update
Notes
Topic
Red Hat Integration Camel Extensions for Quarkus 2.7 is now available. The purpose of this text-only errata is to inform you about the security issues fixed.
Red Hat Product Security has rated this update as having an impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Integration - Camel Extensions for Quarkus 2.7 serves as a replacement for 2.2.1 and includes the following security Fix(es):
Security Fix(es):
* hadoop: WebHDFS client might send SPNEGO authorization header (CVE-2020-9492)
* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)
* elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure (CVE-2021-22132)
* jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck (CVE-2021-37714)
* Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients (CVE-2021-38153)
* xstream: Injecting highly recursive collections or maps can cause a DoS (CVE-2021-43859)
* quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus (CVE-2022-0981)
* elasticsearch: Document disclosure flaw in the Elasticsearch suggester (CVE-2021-22135)
* elasticsearch: Document disclosure flaw when Document or Field Level Security is used (CVE-2021-22137)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat Integration Camel Extensions for Quarkus 2.7 is now available. The purpose of this text-only errata is to inform you about the security issues fixed.\n\nRed Hat Product Security has rated this update as having an impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Integration - Camel Extensions for Quarkus 2.7 serves as a replacement for 2.2.1 and includes the following security Fix(es):\n\nSecurity Fix(es):\n\n* hadoop: WebHDFS client might send SPNEGO authorization header (CVE-2020-9492)\n\n* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)\n\n* elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure (CVE-2021-22132)\n\n* jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck (CVE-2021-37714)\n\n* Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients (CVE-2021-38153)\n\n* xstream: Injecting highly recursive collections or maps can cause a DoS (CVE-2021-43859)\n\n* quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus (CVE-2022-0981)\n\n* elasticsearch: Document disclosure flaw in the Elasticsearch suggester (CVE-2021-22135)\n\n* elasticsearch: Document disclosure flaw when Document or Field Level Security is used (CVE-2021-22137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:5606", url: "https://access.redhat.com/errata/RHSA-2022:5606", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=red.hat.integration&version=2022-Q3", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=red.hat.integration&version=2022-Q3", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_integration/2022.q3", url: "https://access.redhat.com/documentation/en-us/red_hat_integration/2022.q3", }, { category: "external", summary: "1923181", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1923181", }, { category: "external", summary: "1925237", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1925237", }, { category: "external", summary: "1943184", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943184", }, { category: "external", summary: "1943189", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943189", }, { category: "external", summary: "1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "1995259", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1995259", }, { category: "external", summary: "2009041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2009041", }, { category: "external", summary: "2049783", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2049783", }, { category: "external", summary: "2062520", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2062520", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_5606.json", }, ], title: "Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus 2.7 security update", tracking: { current_release_date: "2024-11-22T19:49:42+00:00", generator: { date: "2024-11-22T19:49:42+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2022:5606", initial_release_date: "2022-07-19T13:40:02+00:00", revision_history: [ { date: "2022-07-19T13:40:02+00:00", number: "1", summary: "Initial version", }, { date: "2022-07-19T13:40:02+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T19:49:42+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "RHINT Camel-Q 2.7", product: { name: "RHINT Camel-Q 2.7", product_id: "RHINT Camel-Q 2.7", product_identification_helper: { cpe: "cpe:/a:redhat:camel_quarkus:2.7", }, }, }, ], category: "product_family", name: "Red Hat Integration", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2020-9492", cwe: { id: "CWE-863", name: "Incorrect Authorization", }, discovery_date: "2021-02-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1925237", }, ], notes: [ { category: "description", text: "A flaw was found in Apache hadoop. The WebHDFS client can send a SPNEGO authorization header to a remote URL without proper verification which could lead to an access restriction bypass. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", title: "Vulnerability description", }, { category: "summary", text: "hadoop: WebHDFS client might send SPNEGO authorization header", title: "Vulnerability summary", }, { category: "other", text: "While OpenShift Container Platform (OCP) does package a vulnerable version of hadoop-hdfs-client in the hadoop and hive containers, the HDFS storage back-end is not enabled by default and is largely undocumented/unsupported. However, as it still can be enabled by using the configuration option `unsupportedFeatures.enabledHDFS`, the vulnerability has been rated Moderate for OCP.\n\nIn OpenShift Container Platform (OCP), the Hive/Presto/Hadoop components that comprise the OCP Metering stack, ship the vulnerable version of hadoop package.\nSince the release of OCP 4.6, the Metering product has been deprecated [1], hence the affected components are marked as wontfix.\nThis may be fixed in the future.\n\n[1] https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html#ocp-4-6-metering-operator-deprecated", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-9492", }, { category: "external", summary: "RHBZ#1925237", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1925237", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-9492", url: "https://www.cve.org/CVERecord?id=CVE-2020-9492", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-9492", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-9492", }, { category: "external", summary: "https://hadoop.apache.org/cve_list.html", url: "https://hadoop.apache.org/cve_list.html", }, { category: "external", summary: "https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHADOOP-1065272", url: "https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHADOOP-1065272", }, ], release_date: "2021-01-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "hadoop: WebHDFS client might send SPNEGO authorization header", }, { cve: "CVE-2021-3520", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2021-03-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1954559", }, ], notes: [ { category: "description", text: "There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove() on a negative size argument, causing an out-of-bounds write and/or a crash. The greatest impact of this flaw is to availability, with some potential impact to confidentiality and integrity as well.", title: "Vulnerability description", }, { category: "summary", text: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", title: "Vulnerability summary", }, { category: "other", text: "This flaw is out of support scope for Red Hat Enterprise Linux 7. To learn more about Red Hat Enterprise Linux support life cycles, please see https://access.redhat.com/support/policy/updates/errata .", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-3520", }, { category: "external", summary: "RHBZ#1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-3520", url: "https://www.cve.org/CVERecord?id=CVE-2021-3520", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", }, ], release_date: "2021-04-28T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", }, { cve: "CVE-2021-22132", cwe: { id: "CWE-522", name: "Insufficiently Protected Credentials", }, discovery_date: "2021-02-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1923181", }, ], notes: [ { category: "description", text: "Elasticsearch versions 7.7.0 to 7.10.1 contain an information disclosure flaw in the async search API. Users who execute an async search will improperly store the HTTP headers. An Elasticsearch user with the ability to read the .tasks index could obtain sensitive request headers of other users in the cluster. This issue is fixed in Elasticsearch 7.10.2", title: "Vulnerability description", }, { category: "summary", text: "elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-22132", }, { category: "external", summary: "RHBZ#1923181", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1923181", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-22132", url: "https://www.cve.org/CVERecord?id=CVE-2021-22132", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-22132", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22132", }, { category: "external", summary: "https://discuss.elastic.co/t/elasticsearch-7-10-2-security-update/261164", url: "https://discuss.elastic.co/t/elasticsearch-7-10-2-security-update/261164", }, ], release_date: "2021-01-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure", }, { cve: "CVE-2021-22135", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2021-03-23T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1943184", }, ], notes: [ { category: "description", text: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", title: "Vulnerability description", }, { category: "summary", text: "elasticsearch: Document disclosure flaw in the Elasticsearch suggester", title: "Vulnerability summary", }, { category: "other", text: "In Elasticsearch, Document and Field Level Security is an enterprise only feature [1]. Hence the open source version is unaffected by this vulnerability.\n\n[1] https://www.elastic.co/subscriptions", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-22135", }, { category: "external", summary: "RHBZ#1943184", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943184", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-22135", url: "https://www.cve.org/CVERecord?id=CVE-2021-22135", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-22135", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22135", }, { category: "external", summary: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, ], release_date: "2021-03-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.1, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "elasticsearch: Document disclosure flaw in the Elasticsearch suggester", }, { cve: "CVE-2021-22137", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2021-03-23T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1943189", }, ], notes: [ { category: "description", text: "In Elasticsearch versions before 7.11.2 and 6.8.15 a document disclosure flaw was found when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain cross-cluster search queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices.", title: "Vulnerability description", }, { category: "summary", text: "elasticsearch: Document disclosure flaw when Document or Field Level Security is used", title: "Vulnerability summary", }, { category: "other", text: "In Elasticsearch, Document and Field Level Security is an enterprise only feature [1]. Hence the open source version is unaffected by this vulnerability.\n\n[1] https://www.elastic.co/subscriptions", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-22137", }, { category: "external", summary: "RHBZ#1943189", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943189", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-22137", url: "https://www.cve.org/CVERecord?id=CVE-2021-22137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-22137", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22137", }, { category: "external", summary: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, ], release_date: "2021-03-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 2.6, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "elasticsearch: Document disclosure flaw when Document or Field Level Security is used", }, { cve: "CVE-2021-37714", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2021-08-18T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1995259", }, ], notes: [ { category: "description", text: "jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to parse untrusted HTML or XML may be vulnerable to DOS attacks. If the parser is run on user supplied input, an attacker may supply content that causes the parser to get stuck (loop indefinitely until cancelled), to complete more slowly than usual, or to throw an unexpected exception. This effect may support a denial of service attack. The issue is patched in version 1.14.2. There are a few available workarounds. Users may rate limit input parsing, limit the size of inputs based on system resources, and/or implement thread watchdogs to cap and timeout parse runtimes.", title: "Vulnerability description", }, { category: "summary", text: "jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-37714", }, { category: "external", summary: "RHBZ#1995259", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1995259", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-37714", url: "https://www.cve.org/CVERecord?id=CVE-2021-37714", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-37714", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-37714", }, { category: "external", summary: "https://github.com/jhy/jsoup/security/advisories/GHSA-m72m-mhq2-9p6c", url: "https://github.com/jhy/jsoup/security/advisories/GHSA-m72m-mhq2-9p6c", }, ], release_date: "2021-08-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck", }, { cve: "CVE-2021-38153", cwe: { id: "CWE-367", name: "Time-of-check Time-of-use (TOCTOU) Race Condition", }, discovery_date: "2021-09-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2009041", }, ], notes: [ { category: "description", text: "Some components in Apache Kafka use `Arrays.equals` to validate a password or key, which is vulnerable to timing attacks that make brute force attacks for such credentials more likely to be successful. Users should upgrade to 2.8.1 or higher, or 3.0.0 or higher where this vulnerability has been fixed. The affected versions include Apache Kafka 2.0.0, 2.0.1, 2.1.0, 2.1.1, 2.2.0, 2.2.1, 2.2.2, 2.3.0, 2.3.1, 2.4.0, 2.4.1, 2.5.0, 2.5.1, 2.6.0, 2.6.1, 2.6.2, 2.7.0, 2.7.1, and 2.8.0.", title: "Vulnerability description", }, { category: "summary", text: "Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-38153", }, { category: "external", summary: "RHBZ#2009041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2009041", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-38153", url: "https://www.cve.org/CVERecord?id=CVE-2021-38153", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-38153", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-38153", }, ], release_date: "2021-09-21T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients", }, { cve: "CVE-2021-43859", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2022-02-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2049783", }, ], notes: [ { category: "description", text: "XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulating the processed input stream. XStream 1.4.19 monitors and accumulates the time it takes to add elements to collections and throws an exception if a set threshold is exceeded. Users are advised to upgrade as soon as possible. Users unable to upgrade may set the NO_REFERENCE mode to prevent recursion. See GHSA-rmr5-cpv2-vgjf for further details on a workaround if an upgrade is not possible.", title: "Vulnerability description", }, { category: "summary", text: "xstream: Injecting highly recursive collections or maps can cause a DoS", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Product Security has rated this issue as having Moderate security impact and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-43859", }, { category: "external", summary: "RHBZ#2049783", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2049783", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-43859", url: "https://www.cve.org/CVERecord?id=CVE-2021-43859", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-43859", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-43859", }, ], release_date: "2022-01-29T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "xstream: Injecting highly recursive collections or maps can cause a DoS", }, { acknowledgments: [ { names: [ "Sanne Grinovero", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2022-0981", cwe: { id: "CWE-863", name: "Incorrect Authorization", }, discovery_date: "2022-02-08T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2062520", }, ], notes: [ { category: "description", text: "A flaw was found in Quarkus. The state and potentially associated permissions can leak from one web request to another in RestEasy Reactive. This flaw allows a low-privileged user to perform operations on the database with a different set of privileges than intended.", title: "Vulnerability description", }, { category: "summary", text: "quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus", title: "Vulnerability summary", }, { category: "other", text: "CodeReady Studio is no longer supported and therefore this flaw will not be addressed in CodeReady Studio. Please see https://developers.redhat.com/articles/2022/04/18/announcement-red-hat-codeready-studio-reaches-end-life for more information.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-0981", }, { category: "external", summary: "RHBZ#2062520", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2062520", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-0981", url: "https://www.cve.org/CVERecord?id=CVE-2022-0981", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-0981", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-0981", }, { category: "external", summary: "https://github.com/quarkusio/quarkus/issues/23269", url: "https://github.com/quarkusio/quarkus/issues/23269", }, ], release_date: "2022-02-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 7.6, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus", }, ], }
RHSA-2022:5606
Vulnerability from csaf_redhat
Published
2022-07-19 13:40
Modified
2025-04-09 22:48
Summary
Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus 2.7 security update
Notes
Topic
Red Hat Integration Camel Extensions for Quarkus 2.7 is now available. The purpose of this text-only errata is to inform you about the security issues fixed.
Red Hat Product Security has rated this update as having an impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Integration - Camel Extensions for Quarkus 2.7 serves as a replacement for 2.2.1 and includes the following security Fix(es):
Security Fix(es):
* hadoop: WebHDFS client might send SPNEGO authorization header (CVE-2020-9492)
* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)
* elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure (CVE-2021-22132)
* jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck (CVE-2021-37714)
* Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients (CVE-2021-38153)
* xstream: Injecting highly recursive collections or maps can cause a DoS (CVE-2021-43859)
* quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus (CVE-2022-0981)
* elasticsearch: Document disclosure flaw in the Elasticsearch suggester (CVE-2021-22135)
* elasticsearch: Document disclosure flaw when Document or Field Level Security is used (CVE-2021-22137)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat Integration Camel Extensions for Quarkus 2.7 is now available. The purpose of this text-only errata is to inform you about the security issues fixed.\n\nRed Hat Product Security has rated this update as having an impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Integration - Camel Extensions for Quarkus 2.7 serves as a replacement for 2.2.1 and includes the following security Fix(es):\n\nSecurity Fix(es):\n\n* hadoop: WebHDFS client might send SPNEGO authorization header (CVE-2020-9492)\n\n* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)\n\n* elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure (CVE-2021-22132)\n\n* jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck (CVE-2021-37714)\n\n* Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients (CVE-2021-38153)\n\n* xstream: Injecting highly recursive collections or maps can cause a DoS (CVE-2021-43859)\n\n* quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus (CVE-2022-0981)\n\n* elasticsearch: Document disclosure flaw in the Elasticsearch suggester (CVE-2021-22135)\n\n* elasticsearch: Document disclosure flaw when Document or Field Level Security is used (CVE-2021-22137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:5606", url: "https://access.redhat.com/errata/RHSA-2022:5606", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=red.hat.integration&version=2022-Q3", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=red.hat.integration&version=2022-Q3", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_integration/2022.q3", url: "https://access.redhat.com/documentation/en-us/red_hat_integration/2022.q3", }, { category: "external", summary: "1923181", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1923181", }, { category: "external", summary: "1925237", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1925237", }, { category: "external", summary: "1943184", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943184", }, { category: "external", summary: "1943189", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943189", }, { category: "external", summary: "1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "1995259", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1995259", }, { category: "external", summary: "2009041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2009041", }, { category: "external", summary: "2049783", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2049783", }, { category: "external", summary: "2062520", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2062520", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_5606.json", }, ], title: "Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus 2.7 security update", tracking: { current_release_date: "2025-04-09T22:48:20+00:00", generator: { date: "2025-04-09T22:48:20+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2022:5606", initial_release_date: "2022-07-19T13:40:02+00:00", revision_history: [ { date: "2022-07-19T13:40:02+00:00", number: "1", summary: "Initial version", }, { date: "2022-07-19T13:40:02+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T22:48:20+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "RHINT Camel-Q 2.7", product: { name: "RHINT Camel-Q 2.7", product_id: "RHINT Camel-Q 2.7", product_identification_helper: { cpe: "cpe:/a:redhat:camel_quarkus:2.7", }, }, }, ], category: "product_family", name: "Red Hat Integration", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2020-9492", cwe: { id: "CWE-863", name: "Incorrect Authorization", }, discovery_date: "2021-02-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1925237", }, ], notes: [ { category: "description", text: "A flaw was found in Apache hadoop. The WebHDFS client can send a SPNEGO authorization header to a remote URL without proper verification which could lead to an access restriction bypass. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", title: "Vulnerability description", }, { category: "summary", text: "hadoop: WebHDFS client might send SPNEGO authorization header", title: "Vulnerability summary", }, { category: "other", text: "While OpenShift Container Platform (OCP) does package a vulnerable version of hadoop-hdfs-client in the hadoop and hive containers, the HDFS storage back-end is not enabled by default and is largely undocumented/unsupported. However, as it still can be enabled by using the configuration option `unsupportedFeatures.enabledHDFS`, the vulnerability has been rated Moderate for OCP.\n\nIn OpenShift Container Platform (OCP), the Hive/Presto/Hadoop components that comprise the OCP Metering stack, ship the vulnerable version of hadoop package.\nSince the release of OCP 4.6, the Metering product has been deprecated [1], hence the affected components are marked as wontfix.\nThis may be fixed in the future.\n\n[1] https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html#ocp-4-6-metering-operator-deprecated", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-9492", }, { category: "external", summary: "RHBZ#1925237", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1925237", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-9492", url: "https://www.cve.org/CVERecord?id=CVE-2020-9492", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-9492", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-9492", }, { category: "external", summary: "https://hadoop.apache.org/cve_list.html", url: "https://hadoop.apache.org/cve_list.html", }, { category: "external", summary: "https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHADOOP-1065272", url: "https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHADOOP-1065272", }, ], release_date: "2021-01-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "hadoop: WebHDFS client might send SPNEGO authorization header", }, { cve: "CVE-2021-3520", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2021-03-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1954559", }, ], notes: [ { category: "description", text: "There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove() on a negative size argument, causing an out-of-bounds write and/or a crash. The greatest impact of this flaw is to availability, with some potential impact to confidentiality and integrity as well.", title: "Vulnerability description", }, { category: "summary", text: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", title: "Vulnerability summary", }, { category: "other", text: "This flaw is out of support scope for Red Hat Enterprise Linux 7. To learn more about Red Hat Enterprise Linux support life cycles, please see https://access.redhat.com/support/policy/updates/errata .", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-3520", }, { category: "external", summary: "RHBZ#1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-3520", url: "https://www.cve.org/CVERecord?id=CVE-2021-3520", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", }, ], release_date: "2021-04-28T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", }, { cve: "CVE-2021-22132", cwe: { id: "CWE-522", name: "Insufficiently Protected Credentials", }, discovery_date: "2021-02-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1923181", }, ], notes: [ { category: "description", text: "Elasticsearch versions 7.7.0 to 7.10.1 contain an information disclosure flaw in the async search API. Users who execute an async search will improperly store the HTTP headers. An Elasticsearch user with the ability to read the .tasks index could obtain sensitive request headers of other users in the cluster. This issue is fixed in Elasticsearch 7.10.2", title: "Vulnerability description", }, { category: "summary", text: "elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-22132", }, { category: "external", summary: "RHBZ#1923181", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1923181", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-22132", url: "https://www.cve.org/CVERecord?id=CVE-2021-22132", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-22132", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22132", }, { category: "external", summary: "https://discuss.elastic.co/t/elasticsearch-7-10-2-security-update/261164", url: "https://discuss.elastic.co/t/elasticsearch-7-10-2-security-update/261164", }, ], release_date: "2021-01-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure", }, { cve: "CVE-2021-22135", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2021-03-23T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1943184", }, ], notes: [ { category: "description", text: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", title: "Vulnerability description", }, { category: "summary", text: "elasticsearch: Document disclosure flaw in the Elasticsearch suggester", title: "Vulnerability summary", }, { category: "other", text: "In Elasticsearch, Document and Field Level Security is an enterprise only feature [1]. Hence the open source version is unaffected by this vulnerability.\n\n[1] https://www.elastic.co/subscriptions", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-22135", }, { category: "external", summary: "RHBZ#1943184", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943184", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-22135", url: "https://www.cve.org/CVERecord?id=CVE-2021-22135", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-22135", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22135", }, { category: "external", summary: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, ], release_date: "2021-03-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.1, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "elasticsearch: Document disclosure flaw in the Elasticsearch suggester", }, { cve: "CVE-2021-22137", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2021-03-23T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1943189", }, ], notes: [ { category: "description", text: "In Elasticsearch versions before 7.11.2 and 6.8.15 a document disclosure flaw was found when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain cross-cluster search queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices.", title: "Vulnerability description", }, { category: "summary", text: "elasticsearch: Document disclosure flaw when Document or Field Level Security is used", title: "Vulnerability summary", }, { category: "other", text: "In Elasticsearch, Document and Field Level Security is an enterprise only feature [1]. Hence the open source version is unaffected by this vulnerability.\n\n[1] https://www.elastic.co/subscriptions", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-22137", }, { category: "external", summary: "RHBZ#1943189", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943189", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-22137", url: "https://www.cve.org/CVERecord?id=CVE-2021-22137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-22137", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22137", }, { category: "external", summary: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, ], release_date: "2021-03-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 2.6, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "elasticsearch: Document disclosure flaw when Document or Field Level Security is used", }, { cve: "CVE-2021-37714", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2021-08-18T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1995259", }, ], notes: [ { category: "description", text: "jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to parse untrusted HTML or XML may be vulnerable to DOS attacks. If the parser is run on user supplied input, an attacker may supply content that causes the parser to get stuck (loop indefinitely until cancelled), to complete more slowly than usual, or to throw an unexpected exception. This effect may support a denial of service attack. The issue is patched in version 1.14.2. There are a few available workarounds. Users may rate limit input parsing, limit the size of inputs based on system resources, and/or implement thread watchdogs to cap and timeout parse runtimes.", title: "Vulnerability description", }, { category: "summary", text: "jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-37714", }, { category: "external", summary: "RHBZ#1995259", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1995259", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-37714", url: "https://www.cve.org/CVERecord?id=CVE-2021-37714", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-37714", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-37714", }, { category: "external", summary: "https://github.com/jhy/jsoup/security/advisories/GHSA-m72m-mhq2-9p6c", url: "https://github.com/jhy/jsoup/security/advisories/GHSA-m72m-mhq2-9p6c", }, ], release_date: "2021-08-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck", }, { cve: "CVE-2021-38153", cwe: { id: "CWE-367", name: "Time-of-check Time-of-use (TOCTOU) Race Condition", }, discovery_date: "2021-09-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2009041", }, ], notes: [ { category: "description", text: "Some components in Apache Kafka use `Arrays.equals` to validate a password or key, which is vulnerable to timing attacks that make brute force attacks for such credentials more likely to be successful. Users should upgrade to 2.8.1 or higher, or 3.0.0 or higher where this vulnerability has been fixed. The affected versions include Apache Kafka 2.0.0, 2.0.1, 2.1.0, 2.1.1, 2.2.0, 2.2.1, 2.2.2, 2.3.0, 2.3.1, 2.4.0, 2.4.1, 2.5.0, 2.5.1, 2.6.0, 2.6.1, 2.6.2, 2.7.0, 2.7.1, and 2.8.0.", title: "Vulnerability description", }, { category: "summary", text: "Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-38153", }, { category: "external", summary: "RHBZ#2009041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2009041", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-38153", url: "https://www.cve.org/CVERecord?id=CVE-2021-38153", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-38153", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-38153", }, ], release_date: "2021-09-21T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients", }, { cve: "CVE-2021-43859", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2022-02-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2049783", }, ], notes: [ { category: "description", text: "XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulating the processed input stream. XStream 1.4.19 monitors and accumulates the time it takes to add elements to collections and throws an exception if a set threshold is exceeded. Users are advised to upgrade as soon as possible. Users unable to upgrade may set the NO_REFERENCE mode to prevent recursion. See GHSA-rmr5-cpv2-vgjf for further details on a workaround if an upgrade is not possible.", title: "Vulnerability description", }, { category: "summary", text: "xstream: Injecting highly recursive collections or maps can cause a DoS", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Product Security has rated this issue as having Moderate security impact and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-43859", }, { category: "external", summary: "RHBZ#2049783", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2049783", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-43859", url: "https://www.cve.org/CVERecord?id=CVE-2021-43859", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-43859", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-43859", }, ], release_date: "2022-01-29T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "xstream: Injecting highly recursive collections or maps can cause a DoS", }, { acknowledgments: [ { names: [ "Sanne Grinovero", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2022-0981", cwe: { id: "CWE-863", name: "Incorrect Authorization", }, discovery_date: "2022-02-08T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2062520", }, ], notes: [ { category: "description", text: "A flaw was found in Quarkus. The state and potentially associated permissions can leak from one web request to another in RestEasy Reactive. This flaw allows a low-privileged user to perform operations on the database with a different set of privileges than intended.", title: "Vulnerability description", }, { category: "summary", text: "quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus", title: "Vulnerability summary", }, { category: "other", text: "CodeReady Studio is no longer supported and therefore this flaw will not be addressed in CodeReady Studio. Please see https://developers.redhat.com/articles/2022/04/18/announcement-red-hat-codeready-studio-reaches-end-life for more information.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-0981", }, { category: "external", summary: "RHBZ#2062520", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2062520", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-0981", url: "https://www.cve.org/CVERecord?id=CVE-2022-0981", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-0981", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-0981", }, { category: "external", summary: "https://github.com/quarkusio/quarkus/issues/23269", url: "https://github.com/quarkusio/quarkus/issues/23269", }, ], release_date: "2022-02-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 7.6, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus", }, ], }
rhsa-2022:5606
Vulnerability from csaf_redhat
Published
2022-07-19 13:40
Modified
2025-04-09 22:48
Summary
Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus 2.7 security update
Notes
Topic
Red Hat Integration Camel Extensions for Quarkus 2.7 is now available. The purpose of this text-only errata is to inform you about the security issues fixed.
Red Hat Product Security has rated this update as having an impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Integration - Camel Extensions for Quarkus 2.7 serves as a replacement for 2.2.1 and includes the following security Fix(es):
Security Fix(es):
* hadoop: WebHDFS client might send SPNEGO authorization header (CVE-2020-9492)
* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)
* elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure (CVE-2021-22132)
* jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck (CVE-2021-37714)
* Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients (CVE-2021-38153)
* xstream: Injecting highly recursive collections or maps can cause a DoS (CVE-2021-43859)
* quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus (CVE-2022-0981)
* elasticsearch: Document disclosure flaw in the Elasticsearch suggester (CVE-2021-22135)
* elasticsearch: Document disclosure flaw when Document or Field Level Security is used (CVE-2021-22137)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat Integration Camel Extensions for Quarkus 2.7 is now available. The purpose of this text-only errata is to inform you about the security issues fixed.\n\nRed Hat Product Security has rated this update as having an impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Integration - Camel Extensions for Quarkus 2.7 serves as a replacement for 2.2.1 and includes the following security Fix(es):\n\nSecurity Fix(es):\n\n* hadoop: WebHDFS client might send SPNEGO authorization header (CVE-2020-9492)\n\n* lz4: memory corruption due to an integer overflow bug caused by memmove argument (CVE-2021-3520)\n\n* elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure (CVE-2021-22132)\n\n* jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck (CVE-2021-37714)\n\n* Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients (CVE-2021-38153)\n\n* xstream: Injecting highly recursive collections or maps can cause a DoS (CVE-2021-43859)\n\n* quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus (CVE-2022-0981)\n\n* elasticsearch: Document disclosure flaw in the Elasticsearch suggester (CVE-2021-22135)\n\n* elasticsearch: Document disclosure flaw when Document or Field Level Security is used (CVE-2021-22137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:5606", url: "https://access.redhat.com/errata/RHSA-2022:5606", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=red.hat.integration&version=2022-Q3", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=red.hat.integration&version=2022-Q3", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_integration/2022.q3", url: "https://access.redhat.com/documentation/en-us/red_hat_integration/2022.q3", }, { category: "external", summary: "1923181", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1923181", }, { category: "external", summary: "1925237", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1925237", }, { category: "external", summary: "1943184", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943184", }, { category: "external", summary: "1943189", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943189", }, { category: "external", summary: "1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "1995259", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1995259", }, { category: "external", summary: "2009041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2009041", }, { category: "external", summary: "2049783", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2049783", }, { category: "external", summary: "2062520", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2062520", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_5606.json", }, ], title: "Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus 2.7 security update", tracking: { current_release_date: "2025-04-09T22:48:20+00:00", generator: { date: "2025-04-09T22:48:20+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2022:5606", initial_release_date: "2022-07-19T13:40:02+00:00", revision_history: [ { date: "2022-07-19T13:40:02+00:00", number: "1", summary: "Initial version", }, { date: "2022-07-19T13:40:02+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T22:48:20+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "RHINT Camel-Q 2.7", product: { name: "RHINT Camel-Q 2.7", product_id: "RHINT Camel-Q 2.7", product_identification_helper: { cpe: "cpe:/a:redhat:camel_quarkus:2.7", }, }, }, ], category: "product_family", name: "Red Hat Integration", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2020-9492", cwe: { id: "CWE-863", name: "Incorrect Authorization", }, discovery_date: "2021-02-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1925237", }, ], notes: [ { category: "description", text: "A flaw was found in Apache hadoop. The WebHDFS client can send a SPNEGO authorization header to a remote URL without proper verification which could lead to an access restriction bypass. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", title: "Vulnerability description", }, { category: "summary", text: "hadoop: WebHDFS client might send SPNEGO authorization header", title: "Vulnerability summary", }, { category: "other", text: "While OpenShift Container Platform (OCP) does package a vulnerable version of hadoop-hdfs-client in the hadoop and hive containers, the HDFS storage back-end is not enabled by default and is largely undocumented/unsupported. However, as it still can be enabled by using the configuration option `unsupportedFeatures.enabledHDFS`, the vulnerability has been rated Moderate for OCP.\n\nIn OpenShift Container Platform (OCP), the Hive/Presto/Hadoop components that comprise the OCP Metering stack, ship the vulnerable version of hadoop package.\nSince the release of OCP 4.6, the Metering product has been deprecated [1], hence the affected components are marked as wontfix.\nThis may be fixed in the future.\n\n[1] https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html#ocp-4-6-metering-operator-deprecated", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-9492", }, { category: "external", summary: "RHBZ#1925237", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1925237", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-9492", url: "https://www.cve.org/CVERecord?id=CVE-2020-9492", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-9492", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-9492", }, { category: "external", summary: "https://hadoop.apache.org/cve_list.html", url: "https://hadoop.apache.org/cve_list.html", }, { category: "external", summary: "https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHADOOP-1065272", url: "https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHADOOP-1065272", }, ], release_date: "2021-01-26T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "hadoop: WebHDFS client might send SPNEGO authorization header", }, { cve: "CVE-2021-3520", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2021-03-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1954559", }, ], notes: [ { category: "description", text: "There's a flaw in lz4. An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove() on a negative size argument, causing an out-of-bounds write and/or a crash. The greatest impact of this flaw is to availability, with some potential impact to confidentiality and integrity as well.", title: "Vulnerability description", }, { category: "summary", text: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", title: "Vulnerability summary", }, { category: "other", text: "This flaw is out of support scope for Red Hat Enterprise Linux 7. To learn more about Red Hat Enterprise Linux support life cycles, please see https://access.redhat.com/support/policy/updates/errata .", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-3520", }, { category: "external", summary: "RHBZ#1954559", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1954559", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-3520", url: "https://www.cve.org/CVERecord?id=CVE-2021-3520", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-3520", }, ], release_date: "2021-04-28T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "lz4: memory corruption due to an integer overflow bug caused by memmove argument", }, { cve: "CVE-2021-22132", cwe: { id: "CWE-522", name: "Insufficiently Protected Credentials", }, discovery_date: "2021-02-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1923181", }, ], notes: [ { category: "description", text: "Elasticsearch versions 7.7.0 to 7.10.1 contain an information disclosure flaw in the async search API. Users who execute an async search will improperly store the HTTP headers. An Elasticsearch user with the ability to read the .tasks index could obtain sensitive request headers of other users in the cluster. This issue is fixed in Elasticsearch 7.10.2", title: "Vulnerability description", }, { category: "summary", text: "elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-22132", }, { category: "external", summary: "RHBZ#1923181", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1923181", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-22132", url: "https://www.cve.org/CVERecord?id=CVE-2021-22132", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-22132", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22132", }, { category: "external", summary: "https://discuss.elastic.co/t/elasticsearch-7-10-2-security-update/261164", url: "https://discuss.elastic.co/t/elasticsearch-7-10-2-security-update/261164", }, ], release_date: "2021-01-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "elasticsearch: executing async search improperly stores HTTP headers leading to information disclosure", }, { cve: "CVE-2021-22135", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2021-03-23T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1943184", }, ], notes: [ { category: "description", text: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", title: "Vulnerability description", }, { category: "summary", text: "elasticsearch: Document disclosure flaw in the Elasticsearch suggester", title: "Vulnerability summary", }, { category: "other", text: "In Elasticsearch, Document and Field Level Security is an enterprise only feature [1]. Hence the open source version is unaffected by this vulnerability.\n\n[1] https://www.elastic.co/subscriptions", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-22135", }, { category: "external", summary: "RHBZ#1943184", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943184", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-22135", url: "https://www.cve.org/CVERecord?id=CVE-2021-22135", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-22135", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22135", }, { category: "external", summary: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, ], release_date: "2021-03-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.1, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "elasticsearch: Document disclosure flaw in the Elasticsearch suggester", }, { cve: "CVE-2021-22137", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2021-03-23T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1943189", }, ], notes: [ { category: "description", text: "In Elasticsearch versions before 7.11.2 and 6.8.15 a document disclosure flaw was found when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain cross-cluster search queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices.", title: "Vulnerability description", }, { category: "summary", text: "elasticsearch: Document disclosure flaw when Document or Field Level Security is used", title: "Vulnerability summary", }, { category: "other", text: "In Elasticsearch, Document and Field Level Security is an enterprise only feature [1]. Hence the open source version is unaffected by this vulnerability.\n\n[1] https://www.elastic.co/subscriptions", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-22137", }, { category: "external", summary: "RHBZ#1943189", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1943189", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-22137", url: "https://www.cve.org/CVERecord?id=CVE-2021-22137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-22137", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-22137", }, { category: "external", summary: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, ], release_date: "2021-03-23T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 2.6, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "elasticsearch: Document disclosure flaw when Document or Field Level Security is used", }, { cve: "CVE-2021-37714", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2021-08-18T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1995259", }, ], notes: [ { category: "description", text: "jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to parse untrusted HTML or XML may be vulnerable to DOS attacks. If the parser is run on user supplied input, an attacker may supply content that causes the parser to get stuck (loop indefinitely until cancelled), to complete more slowly than usual, or to throw an unexpected exception. This effect may support a denial of service attack. The issue is patched in version 1.14.2. There are a few available workarounds. Users may rate limit input parsing, limit the size of inputs based on system resources, and/or implement thread watchdogs to cap and timeout parse runtimes.", title: "Vulnerability description", }, { category: "summary", text: "jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-37714", }, { category: "external", summary: "RHBZ#1995259", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1995259", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-37714", url: "https://www.cve.org/CVERecord?id=CVE-2021-37714", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-37714", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-37714", }, { category: "external", summary: "https://github.com/jhy/jsoup/security/advisories/GHSA-m72m-mhq2-9p6c", url: "https://github.com/jhy/jsoup/security/advisories/GHSA-m72m-mhq2-9p6c", }, ], release_date: "2021-08-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jsoup: Crafted input may cause the jsoup HTML and XML parser to get stuck", }, { cve: "CVE-2021-38153", cwe: { id: "CWE-367", name: "Time-of-check Time-of-use (TOCTOU) Race Condition", }, discovery_date: "2021-09-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2009041", }, ], notes: [ { category: "description", text: "Some components in Apache Kafka use `Arrays.equals` to validate a password or key, which is vulnerable to timing attacks that make brute force attacks for such credentials more likely to be successful. Users should upgrade to 2.8.1 or higher, or 3.0.0 or higher where this vulnerability has been fixed. The affected versions include Apache Kafka 2.0.0, 2.0.1, 2.1.0, 2.1.1, 2.2.0, 2.2.1, 2.2.2, 2.3.0, 2.3.1, 2.4.0, 2.4.1, 2.5.0, 2.5.1, 2.6.0, 2.6.1, 2.6.2, 2.7.0, 2.7.1, and 2.8.0.", title: "Vulnerability description", }, { category: "summary", text: "Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-38153", }, { category: "external", summary: "RHBZ#2009041", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2009041", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-38153", url: "https://www.cve.org/CVERecord?id=CVE-2021-38153", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-38153", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-38153", }, ], release_date: "2021-09-21T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients", }, { cve: "CVE-2021-43859", cwe: { id: "CWE-770", name: "Allocation of Resources Without Limits or Throttling", }, discovery_date: "2022-02-01T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2049783", }, ], notes: [ { category: "description", text: "XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remote attacker to allocate 100% CPU time on the target system depending on CPU type or parallel execution of such a payload resulting in a denial of service only by manipulating the processed input stream. XStream 1.4.19 monitors and accumulates the time it takes to add elements to collections and throws an exception if a set threshold is exceeded. Users are advised to upgrade as soon as possible. Users unable to upgrade may set the NO_REFERENCE mode to prevent recursion. See GHSA-rmr5-cpv2-vgjf for further details on a workaround if an upgrade is not possible.", title: "Vulnerability description", }, { category: "summary", text: "xstream: Injecting highly recursive collections or maps can cause a DoS", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Product Security has rated this issue as having Moderate security impact and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2021-43859", }, { category: "external", summary: "RHBZ#2049783", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2049783", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2021-43859", url: "https://www.cve.org/CVERecord?id=CVE-2021-43859", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2021-43859", url: "https://nvd.nist.gov/vuln/detail/CVE-2021-43859", }, ], release_date: "2022-01-29T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "xstream: Injecting highly recursive collections or maps can cause a DoS", }, { acknowledgments: [ { names: [ "Sanne Grinovero", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2022-0981", cwe: { id: "CWE-863", name: "Incorrect Authorization", }, discovery_date: "2022-02-08T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2062520", }, ], notes: [ { category: "description", text: "A flaw was found in Quarkus. The state and potentially associated permissions can leak from one web request to another in RestEasy Reactive. This flaw allows a low-privileged user to perform operations on the database with a different set of privileges than intended.", title: "Vulnerability description", }, { category: "summary", text: "quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus", title: "Vulnerability summary", }, { category: "other", text: "CodeReady Studio is no longer supported and therefore this flaw will not be addressed in CodeReady Studio. Please see https://developers.redhat.com/articles/2022/04/18/announcement-red-hat-codeready-studio-reaches-end-life for more information.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "RHINT Camel-Q 2.7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-0981", }, { category: "external", summary: "RHBZ#2062520", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2062520", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-0981", url: "https://www.cve.org/CVERecord?id=CVE-2022-0981", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-0981", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-0981", }, { category: "external", summary: "https://github.com/quarkusio/quarkus/issues/23269", url: "https://github.com/quarkusio/quarkus/issues/23269", }, ], release_date: "2022-02-03T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-07-19T13:40:02+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "RHINT Camel-Q 2.7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:5606", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 7.6, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L", version: "3.1", }, products: [ "RHINT Camel-Q 2.7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "quarkus: privilege escalation vulnerability with RestEasy Reactive scope leakage in Quarkus", }, ], }
gsd-2021-22135
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.
Aliases
Aliases
{ GSD: { alias: "CVE-2021-22135", description: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", id: "GSD-2021-22135", references: [ "https://www.suse.com/security/cve/CVE-2021-22135.html", "https://access.redhat.com/errata/RHSA-2022:5606", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2021-22135", ], details: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", id: "GSD-2021-22135", modified: "2023-12-13T01:23:24.935228Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security@elastic.co", ID: "CVE-2021-22135", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Elasticsearch", version: { version_data: [ { version_value: "before 7.11.2 and 6.8.15", }, ], }, }, ], }, vendor_name: "Elastic", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor", }, ], }, ], }, references: { reference_data: [ { name: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", refsource: "MISC", url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, { name: "https://security.netapp.com/advisory/ntap-20210625-0003/", refsource: "CONFIRM", url: "https://security.netapp.com/advisory/ntap-20210625-0003/", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "[7.0.0,7.11.2),(,6.8.15)", affected_versions: "All versions starting from 7.0.0 before 7.11.2, all versions before 6.8.15", cvss_v2: "AV:N/AC:M/Au:N/C:P/I:N/A:N", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", cwe_ids: [ "CWE-1035", "CWE-200", "CWE-937", ], date: "2021-07-02", description: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", fixed_versions: [ "6.8.15", ], identifier: "CVE-2021-22135", identifiers: [ "GHSA-62ww-4p3p-7fhj", "CVE-2021-22135", ], not_impacted: "All versions before 7.0.0, all versions starting from 6.8.15 before 7.11.2", package_slug: "maven/org.elasticsearch/elasticsearch", pubdate: "2021-07-02", solution: "Upgrade to version 6.8.15 or above.", title: "Exposure of Sensitive Information to an Unauthorized Actor", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2021-22135", "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", "https://security.netapp.com/advisory/ntap-20210625-0003/", "https://github.com/advisories/GHSA-62ww-4p3p-7fhj", ], uuid: "0882f5a6-87ad-419b-a2ea-c65763af244d", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "6.8.15", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "7.11.2", versionStartIncluding: "7.11.0", vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "security@elastic.co", ID: "CVE-2021-22135", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "Elasticsearch versions before 7.11.2 and 6.8.15 contain a document disclosure flaw was found in the Elasticsearch suggester and profile API when Document and Field Level Security are enabled. The suggester and profile API are normally disabled for an index when document level security is enabled on the index. Certain queries are able to enable the profiler and suggester which could lead to disclosing the existence of documents and fields the attacker should not be able to view.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-200", }, ], }, ], }, references: { reference_data: [ { name: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", refsource: "MISC", tags: [ "Vendor Advisory", ], url: "https://discuss.elastic.co/t/elastic-stack-7-12-0-and-6-8-15-security-update/268125", }, { name: "https://security.netapp.com/advisory/ntap-20210625-0003/", refsource: "CONFIRM", tags: [ "Third Party Advisory", ], url: "https://security.netapp.com/advisory/ntap-20210625-0003/", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "NONE", baseScore: 4.3, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:M/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", userInteractionRequired: false, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, }, }, lastModifiedDate: "2021-09-07T22:06Z", publishedDate: "2021-05-13T18:15Z", }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.