CVE-2023-28481

Name of the Vulnerable Software and Affected Versions Tigergraph Enterprise version 3.7.0

Description An issue was discovered in Tigergraph Enterprise where there is unsecured write access to the SSH authorized keys file. Any code running as the tigergraph user is able to add their SSH public key into the authorized keys file. This allows an attacker to obtain password-less SSH key access by using their own SSH key.

Recommendations For Tigergraph Enterprise version 3.7.0, consider restricting write access to the SSH authorized keys file to prevent unauthorized modifications. As a temporary workaround, monitor the authorized keys file for any suspicious additions and remove any unauthorized SSH keys. At the moment, there is no information about a newer version that contains a fix for this vulnerability.