CVE-2023-33972

Scylladb is a NoSQL data store using the seastar framework, compatible with Apache Cassandra. Authenticated users who are authorized to create tables in a keyspace can escalate their privileges to access a table in the same keyspace, even if they don't have permissions for that table. This issue has not yet been patched. A workaround to address this issue is to disable CREATE privileges on a keyspace, and create new tables on behalf of other users.

CVSS v3 7.2 HIGH

7.2^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.2 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/scylladb/scylladb/security/advisories/GHSA-ww5v-p45p-3vhq	Vendor Advisory
https://github.com/scylladb/scylladb/security/advisories/GHSA-ww5v-p45p-3vhq	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:scylladb:scylladb:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:06

Type	Values Removed	Values Added
References	~~() https://github.com/scylladb/scylladb/security/advisories/GHSA-ww5v-p45p-3vhq - Vendor Advisory~~	() https://github.com/scylladb/scylladb/security/advisories/GHSA-ww5v-p45p-3vhq - Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~8.8~~	v2 : unknown v3 : 7.2

02 Oct 2023, 18:51

Type	Values Removed	Values Added
First Time		Scylladb Scylladb scylladb
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8
CPE		cpe:2.3:a:scylladb:scylladb::::::::
CWE	~~CWE-269~~	NVD-CWE-noinfo
References	~~(MISC) https://github.com/scylladb/scylladb/security/advisories/GHSA-ww5v-p45p-3vhq -~~	(MISC) https://github.com/scylladb/scylladb/security/advisories/GHSA-ww5v-p45p-3vhq - Vendor Advisory

27 Sep 2023, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-09-27 19:15

Updated : 2024-11-21 08:06

NVD link : CVE-2023-33972

Mitre link : CVE-2023-33972

CVE.ORG link : CVE-2023-33972

JSON object : View

Products Affected

scylladb

scylladb

CWE

CWE-269

Improper Privilege Management

NVD-CWE-noinfo

{"id": "CVE-2023-33972", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.2}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2023-09-27T19:15:11.497", "references": [{"url": "https://github.com/scylladb/scylladb/security/advisories/GHSA-ww5v-p45p-3vhq", "tags": ["Vendor Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/scylladb/scylladb/security/advisories/GHSA-ww5v-p45p-3vhq", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-269"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Scylladb is a NoSQL data store using the seastar framework, compatible with Apache Cassandra. Authenticated users who are authorized to create tables in a keyspace can escalate their privileges to access a table in the same keyspace, even if they don't have permissions for that table. This issue has not yet been patched. A workaround to address this issue is to disable CREATE privileges on a keyspace, and create new tables on behalf of other users."}, {"lang": "es", "value": "Scylladb es un almac\u00e9n de datos NoSQL que utiliza el marco seastar, compatible con Apache Cassandra. Los usuarios autenticados que est\u00e1n autorizados a crear tablas en un espacio de claves pueden escalar sus privilegios para acceder a una tabla en el mismo espacio de claves, incluso si no tienen permisos para esa tabla. Este problema a\u00fan no se ha solucionado. Un workaround para solucionar este problema es deshabilitar los privilegios CREATE en un espacio de claves y crear nuevas tablas en nombre de otros usuarios."}], "lastModified": "2024-11-21T08:06:19.417", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:scylladb:scylladb:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8162FB5-E6C6-4E6E-AEE2-7A61A2375710", "versionEndIncluding": "5.2.8"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}