Netdata is vulnerable to improper authentication
CVE-2023-22497

6.5MEDIUM

Key Information:

Vendor: Netdata
Status: Netdata
Vendor: CVE Published:; 14 January 2023

What is CVE-2023-22497?

This vulnerability in Netdata, an open-source solution for real-time infrastructure monitoring, arises from the way MACHINE GUIDs are handled within the streaming feature. When a Netdata Agent is configured in streaming mode, it acts as a parent for child agents, potentially exposing sensitive data if not properly secured. An attacker with access to a parent agent can exploit a valid MACHINE GUID as an unauthorized API key, compromising the security of all child agents. Users are advised to disable streaming by default, limit access to trusted connections, and upgrade to patched versions to mitigate risks.

Affected Version(s)

netdata < 1.36.0-409 < 1.36.0-409

netdata < 1.37 < 1.37

References

https://github.com/netdata/netdata/security/advisories/GH...

x_refsource_CONFIRM

https://github.com/netdata/netdata/releases/tag/v1.37.0

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 14, 2023
Vulnerability Reserved
Dec 29, 2022