PT-2023-30529 · Datahub · Datahub

Amit-Laish

Publicado

2023-11-14

Atualizado

2023-11-22

CVE-2023-47640

CVSS v3.1

6.4

Média

Vetor

AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:L

Name of the Vulnerable Software and Affected Versions DataHub versions prior to 0.11.1

Description The issue concerns the use of a SHA-1 HMAC with a short key length for signing session tokens in DataHub Frontend, making it vulnerable to brute force attacks by sufficiently resourced actors. An authenticated attacker could exploit this to obtain escalated privileges by generating a privileged session cookie. The vulnerability is exacerbated by the default settings of the Play LegacyCookiesModule and the shorter than recommended key length for the signing key.

Recommendations For versions prior to 0.11.1, update to the latest helm chart and rotate the session signing secret to resolve the issue.

Exploit

Correção

Use of a Broken Cryptographic Algorithm

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-327

Identificadores relacionados

CVE-2023-47640

GHSA-FG9X-WVQW-6GMW

Produtos afetados

Datahub

PT-2023-30529 · Datahub · Datahub

CVE-2023-47640

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5