CVE-2022-26850

{"id": "CVE-2022-26850", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2022-04-06T18:15:09.047", "references": [{"url": "http://www.openwall.com/lists/oss-security/2022/04/06/2", "tags": ["Mailing List", "Third Party Advisory"], "source": "security@apache.org"}, {"url": "https://nifi.apache.org/security.html#CVE-2022-26850", "tags": ["Vendor Advisory"], "source": "security@apache.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-668"}]}], "descriptions": [{"lang": "en", "value": "When creating or updating credentials for single-user access, Apache NiFi wrote a copy of the Login Identity Providers configuration to the operating system temporary directory. On most platforms, the operating system temporary directory has global read permissions. NiFi immediately moved the temporary file to the final configuration directory, which significantly limited the window of opportunity for access. NiFi 1.16.0 includes updates to replace the Login Identity Providers configuration without writing a file to the operating system temporary directory."}, {"lang": "es", "value": "Cuando son creadas o actualizadas las credenciales para el acceso de un solo usuario, Apache NiFi escribe una copia de la configuraci\u00f3n de los proveedores de identidad de inicio de sesi\u00f3n en el directorio temporal del sistema operativo. En la mayor\u00eda de las plataformas, el directorio temporal del sistema operativo presenta permisos de lectura globales. NiFi movi\u00f3 inmediatamente el archivo temporal al directorio de configuraci\u00f3n final, lo que limit\u00f3 significativamente la ventana de oportunidad de acceso. NiFi versi\u00f3n 1.16.0 incluye actualizaciones para sustituir la configuraci\u00f3n de los proveedores de identidad de inicio de sesi\u00f3n sin escribir un archivo en el directorio temporal del sistema operativo"}], "lastModified": "2023-08-08T14:22:24.967", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:nifi:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9463A679-D716-4CD8-8EFA-E4C8E76B3E91", "versionEndExcluding": "1.16.0", "versionStartIncluding": "1.14.0"}], "operator": "OR"}]}], "sourceIdentifier": "security@apache.org"}