CVSS: 6.4EPSS: 0%CPEs: 5EXPL: 0CVE-2024-29834 – Apache Pulsar: Improper Authorization For Namespace and Topic Management Endpoints
https://notcve.org/view.php?id=CVE-2024-29834
02 Apr 2024 — This vulnerability allows authenticated users with produce or consume permissions to perform unauthorized operations on partitioned topics, such as unloading topics and triggering compaction. These management operations should be restricted to users with the tenant admin role or superuser role. An authenticated user with produce permission can create subscriptions and update subscription properties on partitioned topics, even though this should be limited to users with consume permissions. This impact analy... • http://www.openwall.com/lists/oss-security/2024/04/02/2 • CWE-863: Incorrect Authorization •
CVSS: 9.0EPSS: 0%CPEs: 5EXPL: 0CVE-2024-27894 – Apache Pulsar: Pulsar Functions Worker Allows Unauthorized File Access and Unauthorized HTTP/HTTPS Proxying
https://notcve.org/view.php?id=CVE-2024-27894
12 Mar 2024 — The Pulsar Functions Worker includes a capability that permits authenticated users to create functions where the function's implementation is referenced by a URL. The supported URL schemes include "file", "http", and "https". When a function is created using this method, the Functions Worker will retrieve the implementation from the URL provided by the user. However, this feature introduces a vulnerability that can be exploited by an attacker to gain unauthorized access to any file that the Pulsar Functions... • http://www.openwall.com/lists/oss-security/2024/03/12/11 • CWE-20: Improper Input Validation CWE-552: Files or Directories Accessible to External Parties •
CVSS: 9.9EPSS: 0%CPEs: 5EXPL: 0CVE-2024-27317 – Apache Pulsar: Pulsar Functions Worker's Archive Extraction Vulnerability Allows Unauthorized File Modification
https://notcve.org/view.php?id=CVE-2024-27317
12 Mar 2024 — In Pulsar Functions Worker, authenticated users can upload functions in jar or nar files. These files, essentially zip files, are extracted by the Functions Worker. However, if a malicious file is uploaded, it could exploit a directory traversal vulnerability. This occurs when the filenames in the zip files, which aren't properly validated, contain special elements like ". • http://www.openwall.com/lists/oss-security/2024/03/12/10 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.5EPSS: 0%CPEs: 5EXPL: 0CVE-2024-27135 – Apache Pulsar: Improper Input Validation in Pulsar Function Worker allows Remote Code Execution
https://notcve.org/view.php?id=CVE-2024-27135
12 Mar 2024 — Improper input validation in the Pulsar Function Worker allows a malicious authenticated user to execute arbitrary Java code on the Pulsar Function worker, outside of the sandboxes designated for running user-provided functions. This vulnerability also applies to the Pulsar Broker when it is configured with "functionsWorkerEnabled=true". This issue affects Apache Pulsar versions from 2.4.0 to 2.10.5, from 2.11.0 to 2.11.3, from 3.0.0 to 3.0.2, from 3.1.0 to 3.1.2, and 3.2.0. 2.10 Pulsar Function Worker user... • http://www.openwall.com/lists/oss-security/2024/03/12/9 • CWE-20: Improper Input Validation CWE-913: Improper Control of Dynamically-Managed Code Resources •
CVSS: 8.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-34321 – Apache Pulsar: Improper Authentication for Pulsar Proxy Statistics Endpoint
https://notcve.org/view.php?id=CVE-2022-34321
12 Mar 2024 — Improper Authentication vulnerability in Apache Pulsar Proxy allows an attacker to connect to the /proxy-stats endpoint without authentication. The vulnerable endpoint exposes detailed statistics about live connections, along with the capability to modify the logging level of proxied connections without requiring proper authentication credentials. This issue affects Apache Pulsar versions from 2.6.0 to 2.10.5, from 2.11.0 to 2.11.2, from 3.0.0 to 3.0.1, and 3.1.0. The known risks include exposing sensitive ... • http://www.openwall.com/lists/oss-security/2024/03/12/8 • CWE-306: Missing Authentication for Critical Function •
CVSS: 6.4EPSS: 0%CPEs: 5EXPL: 0CVE-2024-28098 – Apache Pulsar: Improper Authorization For Topic-Level Policy Management
https://notcve.org/view.php?id=CVE-2024-28098
12 Mar 2024 — The vulnerability allows authenticated users with only produce or consume permissions to modify topic-level policies, such as retention, TTL, and offloading settings. These management operations should be restricted to users with the tenant admin role or super user role. This issue affects Apache Pulsar versions from 2.7.1 to 2.10.5, from 2.11.0 to 2.11.3, from 3.0.0 to 3.0.2, from 3.1.0 to 3.1.2, and 3.2.0. 2.10 Apache Pulsar users should upgrade to at least 2.10.6. 2.11 Apache Pulsar users should upgrade ... • http://www.openwall.com/lists/oss-security/2024/03/12/12 • CWE-863: Incorrect Authorization •