CVE-2023-28864

Name of the Vulnerable Software and Affected Versions Progress Chef Infra Server versions prior to 15.7

Description The issue allows a local attacker to access sensitive information by exploiting a world-readable temporary backup path at /var/opt/opscode/local-mode-cache/backup. This results in the disclosure of all indexed node data because OpenSearch credentials are exposed, and the data typically includes credentials for additional systems. The attacker must wait for an admin to run the chef-server-ctl reconfigure command to exploit this issue.

Recommendations For versions prior to 15.7, update to version 15.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the /var/opt/opscode/local-mode-cache/backup path until a patch is available.