Local File Disclosure Vulnerability in Cortex Alertmanager
CVE-2021-31232

5.5MEDIUM

Key Information:

Vendor
Linux
Status
Cortex
Vendor
CVE Published:
30 April 2021

Summary

The Alertmanager component of CNCF Cortex prior to version 1.8.1 suffers from a local file disclosure vulnerability when the -experimental.alertmanager.enable-api option is enabled. This flaw can be exploited through the HTTP basic authentication mechanism, wherein attackers can leverage the password_file to access any arbitrary file through a webhook. Additionally, alertmanager templates may also serve as an attack vector allowing the loading and exposure of any text file listed in the templates, thereby escalating the risk of unauthorized file access.

References

https://community.grafana.com/c/security-announcements
x_refsource_MISC
https://github.com/cortexproject/cortex
x_refsource_MISC
https://github.com/cortexproject/cortex/pull/4129/files
x_refsource_MISC

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.