User Impersonation Vulnerability in Apache Knox Affecting WebHDFS
CVE-2017-5646

6.8MEDIUM

Key Information:

Vendor

Apache
Status
Apache Knox
Vendor
CVE Published:
26 May 2017

What is CVE-2017-5646?

An authenticated user of Apache Knox, versions 0.2.0 to 0.11.0, can exploit a crafted URL to impersonate another user while accessing WebHDFS. This poses a significant risk as it allows unauthorized data access and can result in escalated privileges. While such actions are logged, the potential for misuse remains a serious concern. Users are advised to upgrade to Apache Knox version 0.12.0 or later to mitigate this vulnerability and enhance security.

Affected Version(s)

Apache Knox 0.2.0 to 0.11.0

References

http://mail-archives.apache.org/mod_mbox/knox-user/201705...
mailing-listx_refsource_MLIST
http://www.securityfocus.com/bid/98739
vdb-entryx_refsource_BID
https://lists.apache.org/thread.html/rcd6bcbcc08840d4e4be...
mailing-listx_refsource_MLIST

CVSS V3.1

Score:
6.8
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.