CVE-2023-20881

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-20881

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-20881.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-20881

Published

2023-05-19T15:15:08Z

Modified

2025-01-21T21:49:21.821748Z

Severity

8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H CVSS Calculator

Summary

[none]

Details

Cloud foundry instances having CAPI version between 1.140 and 1.152.0 along with loggregator-agent v7+ may override other users syslog drain credentials if they're aware of the client certificate used for that syslog drain. This applies even if the drain has zero certs. This would allow the user to override the private key and add or modify a certificate authority used for the connection.

References

https://www.cloudfoundry.org/blog/cve-2023-20881-cas-for-syslog-drain-mtls-feature-can-be-overwritten/

Affected packages

Git / github.com/cloudfoundry/capi-release

Affected ranges

Type: GIT
Repo: https://github.com/cloudfoundry/capi-release
Events: Introduced

12c1fc67721068fd466823d061361189036cc600

Last affected

b34142f9de96460b5f94009131dd3435122381b7

Type: GIT
Repo: https://github.com/cloudfoundry/cf-deployment
Events: Introduced

a9701792f8a85864ea4a0097fa553931fa87f6d9

Last affected

69b5272503a317bb7972e30a8ef2c369d9ee90d0

Affected versions

1.*

1.140.0

1.141.0

1.142.0

1.143.0

1.144.0

1.145.0

1.146.0

1.147.0

1.148.0

1.149.0

1.150.0

1.151.0

1.152.0

v24.*

v24.7.0

v25.*

v25.0.0

v25.1.0

v26.*

v26.0.0

v26.1.0

v26.2.0

v26.3.0

v26.4.0

v26.5.0

v26.6.0

v26.7.0

v27.*

v27.0.0

v27.1.0

v27.2.0

v27.3.0

v27.4.0

v27.5.0

v27.6.0

v27.7.0

v27.8.0

v28.*

v28.0.0

v28.1.0

v28.2.0

v29.*

v29.0.0