PT-2023-22686 · Apache · Apache Pulsar
Michael Marshall
·
Published
2023-07-12
·
Updated
2023-07-20
·
CVE-2023-30429
CVSS v3.1
9.6
Critical
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Apache Pulsar versions prior to 2.10.4
Apache Pulsar version 2.11.0
Description
The issue affects Apache Pulsar when a client connects to the Pulsar Function Worker via the Pulsar Proxy, which uses mTLS authentication. The Pulsar Function Worker incorrectly performs authorization by using the Proxy's role instead of the client's role, leading to potential privilege escalation, especially if the proxy is configured with a superuser role.
Recommendations
For Apache Pulsar version 2.10, upgrade to at least version 2.10.4.
For Apache Pulsar version 2.11, upgrade to at least version 2.11.1.
For Apache Pulsar versions 2.9 and earlier, upgrade to one of the above patched versions.
Fix
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apache Pulsar