Security for everyone

CVE-2024-28255 Scanner

CVE-2024-28255 scanner - Unauthorized Admin Access vulnerability in OpenMetadata

SCAN NOW

Short Info


Level

Critical

Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Toolbox

-

OpenMetadata is a unified platform for discovery, observability, and governance. It is used by data engineers, analysts, and scientists to manage and understand metadata across their organizations. The platform offers a central metadata repository, in-depth lineage tracking, and team collaboration features. It integrates seamlessly with various data tools and provides comprehensive governance capabilities. Users rely on OpenMetadata for efficient data management and to ensure data quality and compliance.

The unauthorized admin access vulnerability in OpenMetadata allows attackers to bypass authentication mechanisms. By exploiting path parameters, attackers can access arbitrary endpoints without JWT validation. This vulnerability can lead to unauthorized access to critical parts of the application. Users of OpenMetadata versions 1.2.3 and earlier are affected.

The vulnerability lies in the JwtFilter component of OpenMetadata, which handles API authentication by verifying JWT tokens. Attackers can manipulate path parameters to include arbitrary strings, bypassing the JWT validation for excluded endpoints. For example, a crafted request to GET /api/v1;v1%2fusers%2flogin/events/subscriptions/validation/condition/111 will be processed without JWT verification. This allows unauthorized access to endpoints, potentially leading to SpEL expression injection. The issue is fixed in version 1.2.4.

Exploitation of this vulnerability can result in unauthorized access to sensitive endpoints. Attackers could gain admin-level access, execute arbitrary code, and compromise the integrity and confidentiality of the system. This could lead to data breaches, unauthorized data modifications, and disruption of services.

By joining the securityforeveryone platform, you can protect your digital assets with comprehensive vulnerability scanning and reporting. Our platform provides in-depth analyses, actionable remediation steps, and continuous monitoring to safeguard your applications. Stay ahead of potential threats and ensure the security and compliance of your systems. Become a member today and benefit from our extensive cybersecurity expertise.

References:

cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture