CVE-2023-3361

A flaw was found in Red Hat OpenShift Data Science. When exporting a pipeline from the Elyra notebook pipeline editor as Python DSL or YAML, it reads S3 credentials from the cluster (ds pipeline server) and saves them in plain text in the generated output instead of an ID for a Kubernetes secret.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/security/cve/CVE-2023-3361	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2216588	Issue Tracking Third Party Advisory
https://github.com/opendatahub-io/odh-dashboard/issues/1415	Issue Tracking

Configurations

Configuration 1 (hide)

cpe:2.3:a:opendatahub:open_data_hub_dashboard:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:redhat:openshift_data_science:-:*:*:*:*:*:*:*

History

05 Oct 2023, 17:01

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.5
References	~~(MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2216588 -~~	(MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2216588 - Issue Tracking, Third Party Advisory
References	~~(MISC) https://github.com/opendatahub-io/odh-dashboard/issues/1415 -~~	(MISC) https://github.com/opendatahub-io/odh-dashboard/issues/1415 - Issue Tracking
References	~~(MISC) https://access.redhat.com/security/cve/CVE-2023-3361 -~~	(MISC) https://access.redhat.com/security/cve/CVE-2023-3361 - Third Party Advisory
First Time		Redhat openshift Data Science Redhat Opendatahub open Data Hub Dashboard Opendatahub
CWE		CWE-319
CPE		cpe:2.3:a:redhat:openshift_data_science:-:::::::* cpe:2.3:a:opendatahub:open_data_hub_dashboard::::::::

04 Oct 2023, 12:56

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-10-04 12:15

Updated : 2023-12-10 15:14

NVD link : CVE-2023-3361

Mitre link : CVE-2023-3361

CVE.ORG link : CVE-2023-3361

JSON object : View

Products Affected

redhat

openshift_data_science

opendatahub

open_data_hub_dashboard

CWE

CWE-319

Cleartext Transmission of Sensitive Information

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2023-3361", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 4.0, "exploitabilityScore": 3.1}]}, "published": "2023-10-04T12:15:10.567", "references": [{"url": "https://access.redhat.com/security/cve/CVE-2023-3361", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216588", "tags": ["Issue Tracking", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://github.com/opendatahub-io/odh-dashboard/issues/1415", "tags": ["Issue Tracking"], "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-319"}]}, {"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in Red Hat OpenShift Data Science. When exporting a pipeline from the Elyra notebook pipeline editor as Python DSL or YAML, it reads S3 credentials from the cluster (ds pipeline server) and saves them in plain text in the generated output instead of an ID for a Kubernetes secret."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en Red Hat OpenShift Data Science. Al exportar un pipeline desde Elyra notebook pipeline editor como Python DSL o YAML, lee las credenciales de S3 del cl\u00faster (servidor de pipeline ds) y las guarda en texto plano en la salida generada en lugar de un ID para un secreto de Kubernetes."}], "lastModified": "2023-11-07T04:18:35.587", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:opendatahub:open_data_hub_dashboard:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6767C5AA-B34C-40E7-9885-C09AA446D8BF", "versionEndExcluding": "1.28.1"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:redhat:openshift_data_science:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3F5FF1E-5DA3-4EC3-B41A-A362BDFC4C69"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}