Vulnerability Report

CVE-2023-29195

Title: Linuxfoundation Vitess Improper Input Validation

Improper Input Validation

Proof Of Concept

No public PoC currently indexed for CVE-2023-29195.

CWE Category CWE-20

Published Date May 11, 2023

Modified Date Nov 21, 2024

Exploit Status Not Found

Score 4.1 CVSS v3.1

Exploit Probability (EPSS)

0.82%

Vulnerability Summary

CVE-2023-29195: Vitess is a database clustering system for horizontal scaling of MySQL through generalized sharding. Prior to version 16.0.2, users can either intentionally or inadvertently create a shard containing `/` characters from VTAdmin such that from that point on, anyone who tries to create a new shard from VTAdmin will receive an error. Attempting to view the keyspace(s) will also no longer work. Creating a shard using `vtctldclient` does not have the same problem because the CLI validates the input correctly. Version 16.0.2, corresponding to version 0.16.2 of the `go` module, contains a patch for this issue. Some workarounds are available. Always use `vtctldclient` to create shards, instead of using VTAdmin; disable creating shards from VTAdmin using RBAC; and/or delete the topology record for the offending shard using the client for your topology server.

Impacted Vendors

linuxfoundation 1

Reference Links

https://github.com/vitessio/vitess/commit/9dcbd7de3180f47e94f54989fb5c66daea00c920 https://github.com/vitessio/vitess/issues/12842 https://github.com/vitessio/vitess/pull/12843 https://github.com/vitessio/vitess/releases/tag/v16.0.2 https://github.com/vitessio/vitess/security/advisories/GHSA-pqj7-jx24-wj7w https://pkg.go.dev/vitess.io/[email protected] https://github.com/vitessio/vitess/commit/9dcbd7de3180f47e94f54989fb5c66daea00c920 https://github.com/vitessio/vitess/issues/12842 https://github.com/vitessio/vitess/pull/12843 https://github.com/vitessio/vitess/releases/tag/v16.0.2 https://github.com/vitessio/vitess/security/advisories/GHSA-pqj7-jx24-wj7w https://pkg.go.dev/vitess.io/[email protected]

CVSS v3.1

Source Entity [email protected]

Severity MEDIUM

4.1

Attack Vector

NETWORK

Complexity

LOW

Privileges

N/A

Interaction

NONE

Confidentiality

N/A

Integrity

N/A

Availability

N/A

Scope

CHANGED

RAW VECTOR CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L

CVSS v3.1

Source Entity [email protected]

Severity MEDIUM

4.3

Attack Vector

NETWORK

Complexity

LOW

Privileges

N/A

Interaction

NONE

Confidentiality

N/A

Integrity

N/A

Availability

N/A

Scope

UNCHANGED

RAW VECTOR CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-2023-29195 Exploits & PoCs (Proof Of Concept)

No public PoCs found in our database for this CVE.

November 21, 2024 MODIFIED

Vulnerability data or affected products updated.

May 11, 2023 PUBLISHED

Vulnerability first announced in NVD.

Attack Vector Matrix

Access Vector NETWORK

Complexity LOW

Privileges N/A

Interaction NONE

CVSS Vector String


                                    CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L

Affected Stack

No specific products linked.