CVE-2022-33683

CWE-295 — Improper Certificate Validation4 documents4 sources

Severity

5.9MEDIUM

EPSS

0.2%

top 55.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Pulsar Apache Software Foundation Apache Pulsar

Timeline

PublishedSep 23

Latest updateSep 25

Description

Apache Pulsar Brokers and Proxies create an internal Pulsar Admin Client that does not verify peer TLS certificates, even when tlsAllowInsecureConnection is disabled via configuration. The Pulsar Admin Client's intra-cluster and geo-replication HTTPS connections are vulnerable to man in the middle attacks, which could leak authentication data, configuration data, and any other data sent by these clients. An attacker can only take advantage of this vulnerability by taking control of a machine 'be…

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages4 packages

▶Mavenorg.apache.pulsar:pulsar-proxy2.8.0 — 2.8.4+3

▶Mavenorg.apache.pulsar:pulsar-broker2.8.0 — 2.8.4+3

▶NVDapache/pulsar2.8.0 — 2.8.4+3

▶CVEListV5apache_software_foundation/apache_pulsar2.7 — 2.7.4+4

🔴Vulnerability Details

GHSA

Apache Pulsar Brokers and Proxies vulnerable to Improper Certificate Validation↗2022-09-25

▶

OSV

Apache Pulsar Brokers and Proxies vulnerable to Improper Certificate Validation↗2022-09-25

▶

CVEList

Disabled Certificate Validation makes Broker, Proxy Admin Clients vulnerable to MITM attack↗2022-09-23

▶