Nacos is a platform designed for dynamic service discovery and configuration and service management. In Nacos before version 1.4.1, when configured to use authentication (-Dnacos.core.auth.enabled=true) Nacos uses the AuthFilter servlet filter to enforce authentication. This filter has a backdoor that enables Nacos servers to bypass this filter and therefore skip authentication checks. This mechanism relies on the user-agent HTTP header so it can be easily spoofed. This issue may allow any user to carry out any administrative tasks on the Nacos server.
References
| Link | Resource |
|---|---|
| https://github.com/advisories/GHSA-36hp-jr8h-556f | Exploit Third Party Advisory |
| https://github.com/alibaba/nacos/issues/4701 | Exploit Third Party Advisory |
| https://github.com/alibaba/nacos/pull/4703 | Patch Third Party Advisory |
Configurations
History
07 May 2021, 23:09
| Type | Values Removed | Values Added |
|---|---|---|
| References | (CONFIRM) https://github.com/advisories/GHSA-36hp-jr8h-556f - Exploit, Third Party Advisory | |
| References | (MISC) https://github.com/alibaba/nacos/issues/4701 - Exploit, Third Party Advisory | |
| References | (MISC) https://github.com/alibaba/nacos/pull/4703 - Patch, Third Party Advisory | |
| CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
| CPE | cpe:2.3:a:alibaba:nacos:*:*:*:*:*:*:*:* | |
| CWE | CWE-290 |
27 Apr 2021, 21:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2021-04-27 21:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-29441
Mitre link : CVE-2021-29441
CVE.ORG link : CVE-2021-29441
JSON object : View
Products Affected
alibaba
- nacos
CWE
CWE-290
Authentication Bypass by Spoofing