CVE-2022-31777

A stored cross-site scripting (XSS) vulnerability in Apache Spark 3.2.1 and earlier, and 3.3.0, allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the logs which would be returned in logs rendered in the UI.

CVSS v3 5.4 MEDIUM

5.4^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.3 / Impact : 2.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

References

Link	Resource
http://www.openwall.com/lists/oss-security/2022/11/01/14	Mailing List
https://lists.apache.org/thread/60mgbswq2lsmrxykfxpqq13ztkm2ht6q	Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2022/11/01/14	Mailing List
https://lists.apache.org/thread/60mgbswq2lsmrxykfxpqq13ztkm2ht6q	Mailing List Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:apache:spark::::::::
	cpe:2.3:a:apache:spark:3.3.0:::::::*

History

21 Nov 2024, 07:05

Type	Values Removed	Values Added
References	~~() http://www.openwall.com/lists/oss-security/2022/11/01/14 - Mailing List~~	() http://www.openwall.com/lists/oss-security/2022/11/01/14 - Mailing List
References	~~() https://lists.apache.org/thread/60mgbswq2lsmrxykfxpqq13ztkm2ht6q - Mailing List, Third Party Advisory~~	() https://lists.apache.org/thread/60mgbswq2lsmrxykfxpqq13ztkm2ht6q - Mailing List, Third Party Advisory

Information

Published : 2022-11-01 16:15

Updated : 2024-11-21 07:05

NVD link : CVE-2022-31777

Mitre link : CVE-2022-31777

CVE.ORG link : CVE-2022-31777

JSON object : View

Products Affected

apache

spark

CWE

CWE-74

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

{"id": "CVE-2022-31777", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.3}]}, "published": "2022-11-01T16:15:13.367", "references": [{"url": "http://www.openwall.com/lists/oss-security/2022/11/01/14", "tags": ["Mailing List"], "source": "security@apache.org"}, {"url": "https://lists.apache.org/thread/60mgbswq2lsmrxykfxpqq13ztkm2ht6q", "tags": ["Mailing List", "Third Party Advisory"], "source": "security@apache.org"}, {"url": "http://www.openwall.com/lists/oss-security/2022/11/01/14", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.apache.org/thread/60mgbswq2lsmrxykfxpqq13ztkm2ht6q", "tags": ["Mailing List", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security@apache.org", "description": [{"lang": "en", "value": "CWE-74"}]}], "descriptions": [{"lang": "en", "value": "A stored cross-site scripting (XSS) vulnerability in Apache Spark 3.2.1 and earlier, and 3.3.0, allows remote attackers to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into the logs which would be returned in logs rendered in the UI."}, {"lang": "es", "value": "Una vulnerabilidad de Cross-Site Scripting (XSS) Almacenado en Apache Spark 3.2.1 y anteriores, y 3.3.0, permite a atacantes remotos ejecutar JavaScript arbitrario en el navegador web de un usuario, al incluir un payload malicioso en los registros que ser\u00edan devuelto en registros representados en la interfaz de usuario."}], "lastModified": "2024-11-21T07:05:17.790", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:spark:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9E7146B-73E4-4CB5-89EC-4DDC270B2786", "versionEndExcluding": "3.2.2"}, {"criteria": "cpe:2.3:a:apache:spark:3.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2797321B-479D-45EF-A50F-0EC8C5500761"}], "operator": "OR"}]}], "sourceIdentifier": "security@apache.org"}