cnvd - cnvd-2022-51055

cnvd-2022-51055

Vulnerability from cnvd

Title: Apache Hadoop权限提升漏洞（CNVD-2022-51055）

Description:

Apache Hadoop是美国阿帕奇（Apache）基金会的一套开源的分布式系统基础架构。该产品能够对大量数据进行分布式处理，并具有高可靠性、高扩展性、高容错性等特点。

Apache Hadoop存在权限提升漏洞，该漏洞源于错误的程序对高级本地过程的调用。攻击者可利用该漏洞导致yarn级别的用户可能以root用户身份运行任意执行命令。

Severity: 高

Patch Name: Apache Hadoop权限提升漏洞（CNVD-2022-51055）的补丁

Patch Description:

Apache Hadoop存在权限提升漏洞，该漏洞源于错误的程序对高级本地过程的调用。攻击者可利用该漏洞导致yarn级别的用户可能以root用户身份运行任意执行命令。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

厂商已发布了漏洞修复程序，请及时关注更新： https://lists.apache.org/thread/ctr84rmo3xd2tzqcx2b277c8z692vhl5

Reference: https://nvd.nist.gov/vuln/detail/CVE-2021-33036

Impacted products

Name
['Apache Hadoop 3.0.0-alpha1', 'Apache Hadoop 3.0.0-alpha2', 'Apache Apache Hadoop 3.0.0-alpha4', 'Apache Hadoop >=3.3.0，<3.3.2', 'Apache Hadoop >=2.2.0，<2.10.2', 'Apache Hadoop >=3.0.1，<3.2.3', 'Apache Hadoop 3.0.0-alpha3']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-33036",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-33036"
    }
  },
  "description": "Apache Hadoop\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u5f00\u6e90\u7684\u5206\u5e03\u5f0f\u7cfb\u7edf\u57fa\u7840\u67b6\u6784\u3002\u8be5\u4ea7\u54c1\u80fd\u591f\u5bf9\u5927\u91cf\u6570\u636e\u8fdb\u884c\u5206\u5e03\u5f0f\u5904\u7406\uff0c\u5e76\u5177\u6709\u9ad8\u53ef\u9760\u6027\u3001\u9ad8\u6269\u5c55\u6027\u3001\u9ad8\u5bb9\u9519\u6027\u7b49\u7279\u70b9\u3002\n\nApache Hadoop\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u9519\u8bef\u7684\u7a0b\u5e8f\u5bf9\u9ad8\u7ea7\u672c\u5730\u8fc7\u7a0b\u7684\u8c03\u7528\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4yarn\u7ea7\u522b\u7684\u7528\u6237\u53ef\u80fd\u4ee5root\u7528\u6237\u8eab\u4efd\u8fd0\u884c\u4efb\u610f\u6267\u884c\u547d\u4ee4\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://lists.apache.org/thread/ctr84rmo3xd2tzqcx2b277c8z692vhl5",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-51055",
  "openTime": "2022-07-12",
  "patchDescription": "Apache Hadoop\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u57fa\u91d1\u4f1a\u7684\u4e00\u5957\u5f00\u6e90\u7684\u5206\u5e03\u5f0f\u7cfb\u7edf\u57fa\u7840\u67b6\u6784\u3002\u8be5\u4ea7\u54c1\u80fd\u591f\u5bf9\u5927\u91cf\u6570\u636e\u8fdb\u884c\u5206\u5e03\u5f0f\u5904\u7406\uff0c\u5e76\u5177\u6709\u9ad8\u53ef\u9760\u6027\u3001\u9ad8\u6269\u5c55\u6027\u3001\u9ad8\u5bb9\u9519\u6027\u7b49\u7279\u70b9\u3002\r\n\r\nApache Hadoop\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u9519\u8bef\u7684\u7a0b\u5e8f\u5bf9\u9ad8\u7ea7\u672c\u5730\u8fc7\u7a0b\u7684\u8c03\u7528\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4yarn\u7ea7\u522b\u7684\u7528\u6237\u53ef\u80fd\u4ee5root\u7528\u6237\u8eab\u4efd\u8fd0\u884c\u4efb\u610f\u6267\u884c\u547d\u4ee4\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Apache Hadoop\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2022-51055\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Apache Hadoop 3.0.0-alpha1",
      "Apache Hadoop 3.0.0-alpha2",
      "Apache Apache Hadoop 3.0.0-alpha4",
      "Apache Hadoop \u003e=3.3.0\uff0c\u003c3.3.2",
      "Apache Hadoop \u003e=2.2.0\uff0c\u003c2.10.2",
      "Apache Hadoop \u003e=3.0.1\uff0c\u003c3.2.3",
      "Apache Hadoop 3.0.0-alpha3"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2021-33036",
  "serverity": "\u9ad8",
  "submitTime": "2022-06-17",
  "title": "Apache Hadoop\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2022-51055\uff09"
}

CVE-2021-33036 (GCVE-0-2021-33036)

Vulnerability from cvelistv5

Published

2022-06-15 14:25

Modified

2024-08-03 23:42

Severity ?

CWE

CWE-264 - Permissions, Privileges, and Access Controls
CWE-24 - Path Traversal: '../filedir'

Summary

In Apache Hadoop 2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, and 3.3.0 to 3.3.1, a user who can escalate to yarn user can possibly run arbitrary commands as root user. Users should upgrade to Apache Hadoop 2.10.2, 3.2.3, 3.3.2 or higher.

References

▼	URL	Tags
	https://lists.apache.org/thread/ctr84rmo3xd2tzqcx2b277c8z692vhl5	x_refsource_MISC
	http://www.openwall.com/lists/oss-security/2022/06/15/2	mailing-list, x_refsource_MLIST
	https://security.netapp.com/advisory/ntap-20220722-0003/	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Apache Software Foundation	Apache Hadoop	Version: 2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, and 3.3.0 to 3.3.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T23:42:19.282Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread/ctr84rmo3xd2tzqcx2b277c8z692vhl5"
          },
          {
            "name": "[oss-security] 20220615 CVE-2021-33036: Apache Hadoop Privilege escalation vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/06/15/2"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220722-0003/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache Hadoop",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "status": "affected",
              "version": "2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, and 3.3.0 to 3.3.1"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Apache Hadoop would like to thank Hideyuki Furue for reporting and fixing this issue."
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Apache Hadoop 2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, and 3.3.0 to 3.3.1, a user who can escalate to yarn user can possibly run arbitrary commands as root user. Users should upgrade to Apache Hadoop 2.10.2, 3.2.3, 3.3.2 or higher."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "other": "Critical"
            },
            "type": "unknown"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-264",
              "description": "CWE-264 Permissions, Privileges, and Access Controls",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-24",
              "description": "CWE-24 Path Traversal: \u0027../filedir\u0027",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-07-22T18:07:41",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://lists.apache.org/thread/ctr84rmo3xd2tzqcx2b277c8z692vhl5"
        },
        {
          "name": "[oss-security] 20220615 CVE-2021-33036: Apache Hadoop Privilege escalation vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2022/06/15/2"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220722-0003/"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Apache Hadoop Privilege escalation vulnerability",
      "workarounds": [
        {
          "lang": "en",
          "value": "If you are using the affected version of Apache Hadoop and some users can escalate to yarn user and cannot escalate to root user, remove the permission to escalate to yarn user from them."
        }
      ],
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2021-33036",
          "STATE": "PUBLIC",
          "TITLE": "Apache Hadoop Privilege escalation vulnerability"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache Hadoop",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, and 3.3.0 to 3.3.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "Apache Hadoop would like to thank Hideyuki Furue for reporting and fixing this issue."
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Apache Hadoop 2.2.0 to 2.10.1, 3.0.0-alpha1 to 3.1.4, 3.2.0 to 3.2.2, and 3.3.0 to 3.3.1, a user who can escalate to yarn user can possibly run arbitrary commands as root user. Users should upgrade to Apache Hadoop 2.10.2, 3.2.3, 3.3.2 or higher."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": [
          {
            "other": "Critical"
          }
        ],
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-264 Permissions, Privileges, and Access Controls"
                }
              ]
            },
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-24 Path Traversal: \u0027../filedir\u0027"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://lists.apache.org/thread/ctr84rmo3xd2tzqcx2b277c8z692vhl5",
              "refsource": "MISC",
              "url": "https://lists.apache.org/thread/ctr84rmo3xd2tzqcx2b277c8z692vhl5"
            },
            {
              "name": "[oss-security] 20220615 CVE-2021-33036: Apache Hadoop Privilege escalation vulnerability",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2022/06/15/2"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220722-0003/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220722-0003/"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        },
        "work_around": [
          {
            "lang": "en",
            "value": "If you are using the affected version of Apache Hadoop and some users can escalate to yarn user and cannot escalate to root user, remove the permission to escalate to yarn user from them."
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2021-33036",
    "datePublished": "2022-06-15T14:25:14",
    "dateReserved": "2021-05-17T00:00:00",
    "dateUpdated": "2024-08-03T23:42:19.282Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted