CVE-2022-41917
Incorrect Error Handling Allowed Partial File Reads Over REST API in OpenSearch
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
OpenSearch is a community-driven, open source fork of Elasticsearch and Kibana. OpenSearch allows users to specify a local file when defining text analyzers to process data for text analysis. An issue in the implementation of this feature allows certain specially crafted queries to return a response containing the first line of text from arbitrary files. The list of potentially impacted files is limited to text files with read permissions allowed in the Java Security Manager policy configuration. OpenSearch version 1.3.7 and 2.4.0 contain a fix for this issue. Users are advised to upgrade. There are no known workarounds for this issue.
OpenSearch es un fork de código abierto impulsada por la comunidad de Elasticsearch y Kibana. OpenSearch permite a los usuarios especificar un archivo local al definir analizadores de texto para procesar datos para el análisis de texto. Un problema en la implementación de esta característica permite que ciertas consultas especialmente manipuladas devuelvan una respuesta que contiene la primera línea de texto de archivos arbitrarios. La lista de archivos potencialmente afectados se limita a archivos de texto con permisos de lectura permitidos en la configuración de políticas de Java Security Manager. Las versiones 1.3.7 y 2.4.0 de OpenSearch contienen una solución para este problema. Se recomienda a los usuarios que actualicen. No se conocen workarounds para este problema.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-09-30 CVE Reserved
- 2022-11-15 CVE Published
- 2024-06-07 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
- CWE-755: Improper Handling of Exceptional Conditions
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://github.com/opensearch-project/OpenSearch/security/advisories/GHSA-w3rx-m34v-wrqx | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/opensearch-project/OpenSearch/commit/6d20423f5920745463b1abc5f1daf6a786c41aa0 | 2023-07-10 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Amazon Search vendor "Amazon" | Opensearch Search vendor "Amazon" for product "Opensearch" | >= 1.0.0 < 1.3.7 Search vendor "Amazon" for product "Opensearch" and version " >= 1.0.0 < 1.3.7" | - |
Affected
| ||||||
| Amazon Search vendor "Amazon" | Opensearch Search vendor "Amazon" for product "Opensearch" | >= 2.0.0 < 2.4.0 Search vendor "Amazon" for product "Opensearch" and version " >= 2.0.0 < 2.4.0" | - |
Affected
| ||||||