CVE-2017-16613

CWE-287Improper Authentication5 documents4 sources
Severity
9.8CRITICAL
EPSS
2.3%
top 15.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Openstack SwauthOpenstack SwiftDebian Debian Linux
Timeline
PublishedNov 21
Latest updateMay 17

Description

An issue was discovered in middleware.py in OpenStack Swauth through 1.2.0 when used with OpenStack Swift through 2.15.1. The Swift object store and proxy server are saving (unhashed) tokens retrieved from the Swauth middleware authentication mechanism to a log file as part of a GET URI. This allows attackers to bypass authentication by inserting a token into an X-Auth-Token header of a new request. NOTE: github.com/openstack/swauth URLs do not mean that Swauth is maintained by an official OpenS

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages3 packages

NVDopenstack/swauth1.2.0
NVDopenstack/swift2.15.1
PyPIswauth< 70af7986265a3defea054c46efc82d0698917298+1

Also affects: Debian Linux 9.0

Patches

Patch: bugs.debian.orgPatch: bugs.launchpad.netPatch: github.com

🔴Vulnerability Details

4
GHSA
OpenStack Swauth object/proxy server writing Auth Token to log file2022-05-17
OSV
OpenStack Swauth object/proxy server writing Auth Token to log file2022-05-17
OSV
CVE-2017-16613: An issue was discovered in middleware2017-11-21
CVEList
CVE-2017-16613: An issue was discovered in middleware2017-11-21
CVE-2017-16613 (CRITICAL CVSS 9.8) | An issue was discovered in middlewa | cvebase.io