cnvd - cnvd-2022-33109

cnvd-2022-33109

Vulnerability from cnvd

Title: Apache NiFi存在未明漏洞（CNVD-2022-33109）

Description:

Apache NiFi是美国阿帕奇（Apache）基金会的一套数据处理和分发系统。该系统主要用于数据路由、转换和系统中介逻辑。

Apache NiFi存在安全漏洞，该漏洞源于在为单用户访问创建或更新凭据时，Apache NiFi将登录标识提供程序配置的副本写入操作系统的临时目录。在大多数平台上，操作系统的临时目录具有全局读取权限。Apache NiFi 1.16.0版本包含更新，以替换登录标识提供程序配置，而无需将文件写入操作系统临时目录。目前没有详细的漏洞细节提供。

Severity: 中

Patch Name: Apache NiFi存在未明漏洞（CNVD-2022-33109）的补丁

Patch Description:

Apache NiFi是美国阿帕奇（Apache）基金会的一套数据处理和分发系统。该系统主要用于数据路由、转换和系统中介逻辑。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://nifi.apache.org/security.html#CVE-2022-26850

Reference: https://nvd.nist.gov/vuln/detail/CVE-2022-26850

Impacted products

Name
Apache NiFi >=1.14.0，<1.16.0

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2022-26850"
    }
  },
  "description": "Apache NiFi\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u6570\u636e\u5904\u7406\u548c\u5206\u53d1\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u4e3b\u8981\u7528\u4e8e\u6570\u636e\u8def\u7531\u3001\u8f6c\u6362\u548c\u7cfb\u7edf\u4e2d\u4ecb\u903b\u8f91\u3002\n\nApache NiFi\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5728\u4e3a\u5355\u7528\u6237\u8bbf\u95ee\u521b\u5efa\u6216\u66f4\u65b0\u51ed\u636e\u65f6\uff0cApache NiFi\u5c06\u767b\u5f55\u6807\u8bc6\u63d0\u4f9b\u7a0b\u5e8f\u914d\u7f6e\u7684\u526f\u672c\u5199\u5165\u64cd\u4f5c\u7cfb\u7edf\u7684\u4e34\u65f6\u76ee\u5f55\u3002\u5728\u5927\u591a\u6570\u5e73\u53f0\u4e0a\uff0c\u64cd\u4f5c\u7cfb\u7edf\u7684\u4e34\u65f6\u76ee\u5f55\u5177\u6709\u5168\u5c40\u8bfb\u53d6\u6743\u9650\u3002Apache NiFi 1.16.0\u7248\u672c\u5305\u542b\u66f4\u65b0\uff0c\u4ee5\u66ff\u6362\u767b\u5f55\u6807\u8bc6\u63d0\u4f9b\u7a0b\u5e8f\u914d\u7f6e\uff0c\u800c\u65e0\u9700\u5c06\u6587\u4ef6\u5199\u5165\u64cd\u4f5c\u7cfb\u7edf\u4e34\u65f6\u76ee\u5f55\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://nifi.apache.org/security.html#CVE-2022-26850",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-33109",
  "openTime": "2022-04-24",
  "patchDescription": "Apache NiFi\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u6570\u636e\u5904\u7406\u548c\u5206\u53d1\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u4e3b\u8981\u7528\u4e8e\u6570\u636e\u8def\u7531\u3001\u8f6c\u6362\u548c\u7cfb\u7edf\u4e2d\u4ecb\u903b\u8f91\u3002\r\n\r\nApache NiFi\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5728\u4e3a\u5355\u7528\u6237\u8bbf\u95ee\u521b\u5efa\u6216\u66f4\u65b0\u51ed\u636e\u65f6\uff0cApache NiFi\u5c06\u767b\u5f55\u6807\u8bc6\u63d0\u4f9b\u7a0b\u5e8f\u914d\u7f6e\u7684\u526f\u672c\u5199\u5165\u64cd\u4f5c\u7cfb\u7edf\u7684\u4e34\u65f6\u76ee\u5f55\u3002\u5728\u5927\u591a\u6570\u5e73\u53f0\u4e0a\uff0c\u64cd\u4f5c\u7cfb\u7edf\u7684\u4e34\u65f6\u76ee\u5f55\u5177\u6709\u5168\u5c40\u8bfb\u53d6\u6743\u9650\u3002Apache NiFi 1.16.0\u7248\u672c\u5305\u542b\u66f4\u65b0\uff0c\u4ee5\u66ff\u6362\u767b\u5f55\u6807\u8bc6\u63d0\u4f9b\u7a0b\u5e8f\u914d\u7f6e\uff0c\u800c\u65e0\u9700\u5c06\u6587\u4ef6\u5199\u5165\u64cd\u4f5c\u7cfb\u7edf\u4e34\u65f6\u76ee\u5f55\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Apache NiFi\u5b58\u5728\u672a\u660e\u6f0f\u6d1e\uff08CNVD-2022-33109\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Apache NiFi \u003e=1.14.0\uff0c\u003c1.16.0"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2022-26850",
  "serverity": "\u4e2d",
  "submitTime": "2022-04-07",
  "title": "Apache NiFi\u5b58\u5728\u672a\u660e\u6f0f\u6d1e\uff08CNVD-2022-33109\uff09"
}

CVE-2022-26850 (GCVE-0-2022-26850)

Vulnerability from cvelistv5

Published

2022-04-06 17:40

Modified

2024-08-03 05:11

Severity ?

CWE

Insufficiently protected credentials

Summary

When creating or updating credentials for single-user access, Apache NiFi wrote a copy of the Login Identity Providers configuration to the operating system temporary directory. On most platforms, the operating system temporary directory has global read permissions. NiFi immediately moved the temporary file to the final configuration directory, which significantly limited the window of opportunity for access. NiFi 1.16.0 includes updates to replace the Login Identity Providers configuration without writing a file to the operating system temporary directory.

References

▼	URL	Tags
	https://nifi.apache.org/security.html#CVE-2022-26850	x_refsource_MISC
	http://www.openwall.com/lists/oss-security/2022/04/06/2	mailing-list, x_refsource_MLIST

Impacted products

	Vendor	Product	Version
	Apache Software Foundation	Apache NiFi	Version: NiFi 1.14.0 to 1.15.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T05:11:45.347Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://nifi.apache.org/security.html#CVE-2022-26850"
          },
          {
            "name": "[oss-security] 20220406 CVE-2022-26850: Apache NiFi: Insufficiently protected credentials",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/04/06/2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache NiFi",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "status": "affected",
              "version": "NiFi 1.14.0 to 1.15.3"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "This issue was discovered by Jonathan Leitschuh (https://twitter.com/jlleitschuh)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "When creating or updating credentials for single-user access, Apache NiFi wrote a copy of the Login Identity Providers configuration to the operating system temporary directory. On most platforms, the operating system temporary directory has global read permissions. NiFi immediately moved the temporary file to the final configuration directory, which significantly limited the window of opportunity for access. NiFi 1.16.0 includes updates to replace the Login Identity Providers configuration without writing a file to the operating system temporary directory."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "moderate"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Insufficiently protected credentials",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-04-06T20:06:16",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://nifi.apache.org/security.html#CVE-2022-26850"
        },
        {
          "name": "[oss-security] 20220406 CVE-2022-26850: Apache NiFi: Insufficiently protected credentials",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/04/06/2"
        }
      ],
      "source": {
        "defect": [
          "NIFI-9785"
        ],
        "discovery": "UNKNOWN"
      },
      "title": "Insufficiently protected credentials",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2022-26850",
          "STATE": "PUBLIC",
          "TITLE": "Insufficiently protected credentials"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache NiFi",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_name": "NiFi",
                            "version_value": "1.14.0 to 1.15.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "This issue was discovered by Jonathan Leitschuh (https://twitter.com/jlleitschuh)"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "When creating or updating credentials for single-user access, Apache NiFi wrote a copy of the Login Identity Providers configuration to the operating system temporary directory. On most platforms, the operating system temporary directory has global read permissions. NiFi immediately moved the temporary file to the final configuration directory, which significantly limited the window of opportunity for access. NiFi 1.16.0 includes updates to replace the Login Identity Providers configuration without writing a file to the operating system temporary directory."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "moderate"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Insufficiently protected credentials"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://nifi.apache.org/security.html#CVE-2022-26850",
              "refsource": "MISC",
              "url": "https://nifi.apache.org/security.html#CVE-2022-26850"
            },
            {
              "name": "[oss-security] 20220406 CVE-2022-26850: Apache NiFi: Insufficiently protected credentials",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/04/06/2"
            }
          ]
        },
        "source": {
          "defect": [
            "NIFI-9785"
          ],
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2022-26850",
    "datePublished": "2022-04-06T17:40:09",
    "dateReserved": "2022-03-10T00:00:00",
    "dateUpdated": "2024-08-03T05:11:45.347Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted