Arbitrary File Access in Apache Karaf with SSH Access
CVE-2018-11786

8.8HIGH

Key Information:

Vendor
Apache
Status
Apache Karaf
Vendor
CVE Published:
18 September 2018

Summary

In versions of Apache Karaf prior to 4.2.0, a security issue exists where the sshd service, if enabled, allows users with console rights to access and modify files within the file system. This potential exposure can lead to unauthorized access to sensitive data, as any user with SSH capabilities can read and write files accessible to the Karaf process. Although implementing chroot can help restrict root directory accesses, the inherent risk remains for those with SSH access, warranting additional security measures like proper policy configurations.

Affected Version(s)

Apache Karaf prior to 4.2.0 release

References

https://lists.apache.org/thread.html/5b7ac762c6bbe77ac5d9...
mailing-listx_refsource_MLIST
https://issues.apache.org/jira/browse/KARAF-5427
x_refsource_CONFIRM
http://karaf.apache.org/security/cve-2018-11786.txt
x_refsource_CONFIRM

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.