CVE-2021-34538

Apache Hive before 3.1.3 "CREATE" and "DROP" function operations does not check for necessary authorization of involved entities in the query. It was found that an unauthorized user can manipulate an existing UDF without having the privileges to do so. This allowed unauthorized or underprivileged users to drop and recreate UDFs pointing them to new jars that could be potentially malicious.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://lists.apache.org/thread/oqqgnhz4c6nxsfd0xstosnk0g15f7354	Mailing List Vendor Advisory
https://lists.apache.org/thread/oqqgnhz4c6nxsfd0xstosnk0g15f7354	Mailing List Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:apache:hive:*:*:*:*:*:*:*:*

History

21 Nov 2024, 06:10

Type	Values Removed	Values Added
References	~~() https://lists.apache.org/thread/oqqgnhz4c6nxsfd0xstosnk0g15f7354 - Mailing List, Vendor Advisory~~	() https://lists.apache.org/thread/oqqgnhz4c6nxsfd0xstosnk0g15f7354 - Mailing List, Vendor Advisory

Information

Published : 2022-07-16 07:15

Updated : 2024-11-21 06:10

NVD link : CVE-2021-34538

Mitre link : CVE-2021-34538

CVE.ORG link : CVE-2021-34538

JSON object : View

Products Affected

apache

hive

CWE

CWE-306

Missing Authentication for Critical Function

{"id": "CVE-2021-34538", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2022-07-16T07:15:08.530", "references": [{"url": "https://lists.apache.org/thread/oqqgnhz4c6nxsfd0xstosnk0g15f7354", "tags": ["Mailing List", "Vendor Advisory"], "source": "security@apache.org"}, {"url": "https://lists.apache.org/thread/oqqgnhz4c6nxsfd0xstosnk0g15f7354", "tags": ["Mailing List", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security@apache.org", "description": [{"lang": "en", "value": "CWE-306"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-306"}]}], "descriptions": [{"lang": "en", "value": "Apache Hive before 3.1.3 \"CREATE\" and \"DROP\" function operations does not check for necessary authorization of involved entities in the query. It was found that an unauthorized user can manipulate an existing UDF without having the privileges to do so. This allowed unauthorized or underprivileged users to drop and recreate UDFs pointing them to new jars that could be potentially malicious."}, {"lang": "es", "value": "Las operaciones de funci\u00f3n \"CREATE\" y \"DROP\" de Apache Hive versiones anteriores a 3.1.3, no comprueban la autorizaci\u00f3n necesaria de las entidades implicadas en la consulta. Se ha encontrado que un usuario no autorizado puede manipular una UDF existente sin tener los privilegios para hacerlo. Esto permit\u00eda a usuarios no autorizados o poco privilegiados soltar y volver a crear UDFs que apuntaban a nuevos tarros que pod\u00edan ser potencialmente maliciosos"}], "lastModified": "2024-11-21T06:10:37.843", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:hive:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B25510FE-9822-4F1E-8442-A4D9349B9C30", "versionEndExcluding": "3.1.3"}], "operator": "OR"}]}], "sourceIdentifier": "security@apache.org"}