Fluid Attacks Database

Description

Access control bypass in Apache ZooKeeper An issue is present in Apache ZooKeeper 1.0.0 to 3.4.13 and 3.5.0-alpha to 3.5.4-beta. ZooKeeper?s getACL() command doesn?t check any permission when retrieves the ACLs of the requested node and returns all information contained in the ACL Id field as plaintext string. DigestAuthenticationProvider overloads the Id field with the hash value that is used for user authentication. As a consequence, if Digest Authentication is in use, the unsalted hash value will be disclosed by getACL() request for unauthenticated or unprivileged users.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
maven	org.apache.zookeeper:zookeeper	>=1.0.0 <3.4.14 \|\| >=3.5.0 <3.5.5	3.4.14, 3.5.5
debian 14	zookeeper	>=0 <3.4.13-2	3.4.13-2
debian 12	zookeeper	>=0 <3.4.13-2	3.4.13-2
debian 11	zookeeper	>=0 <3.4.13-2	3.4.13-2
debian 13	zookeeper	>=0 <3.4.13-2	3.4.13-2

Aliases

1. CVE-2019-02012. NVD-2019-02013. OSV-2019-02014. OSV-DEBIAN-2019-02015. GCVE-2019-02016. lists.debian.org7. access.redhat.com8. access.redhat.com9. access.redhat.com10. SECURITY-TRACKER-CVE-2019-0201

References

1. https://zookeeper.apache.org/security.html#CVE-2019-02012. https://www.oracle.com/security-alerts/cpuoct2020.html3. https://www.oracle.com/security-alerts/cpujul2020.html4. https://www.oracle.com//security-alerts/cpujul2021.html5. https://www.debian.org/security/2019/dsa-44616. https://security.netapp.com/advisory/ntap-20190619-00017. https://seclists.org/bugtraq/2019/Jun/138. https://lists.apache.org/thread.html/r40f32125c1d97ad82404cc918171d9e0fcf78e534256674e9da1eb4b@%3Ccommon-issues.hadoop.apache.org%3E9. https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E10. https://lists.apache.org/thread.html/f6112882e30a31992a79e0a8c31ac179e9d0de7c708de3a9258d4391@%3Cissues.bookkeeper.apache.org%3E11. https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E12. https://lists.apache.org/thread.html/5d9a1cf41a5880557bf680b7321b4ab9a4d206c601ffb15fef6f196a@%3Ccommits.accumulo.apache.org%3E13. https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E14. https://lists.apache.org/thread.html/053d9ce4d579b02203db18545fee5e33f35f2932885459b74d1e4272@%3Cissues.activemq.apache.org%3E15. https://issues.apache.org/jira/browse/ZOOKEEPER-139216. http://www.securityfocus.com/bid/10842717. https://github.com/dawetmaster/CVE-2019-0201-zookeeper-vulnerable