Remote Unauth Access via ConnectionHandler in Hazelcast 5.1.2
CVE-2022-36437 Published on December 29, 2022
The Connection handler in Hazelcast and Hazelcast Jet allows a remote unauthenticated attacker to access and manipulate data in the cluster with the identity of another already authenticated connection. The affected Hazelcast versions are through 4.0.6, 4.1.9, 4.2.5, 5.0.3, and 5.1.2. The affected Hazelcast Jet versions are through 4.5.3.
Vulnerability Analysis
CVE-2022-36437 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality and integrity, and no impact on availability.
Weakness Type
Session Fixation
Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.
Products Associated with CVE-2022-36437
stack.watch emails you whenever new vulnerabilities are published in Hazelcast Jet or Hazelcast. Just hit a watch button to start following.
Vulnerable Packages
The following package name and versions may be associated with CVE-2022-36437
| Package Manager | Vulnerable Package | Versions | Fixed In |
|---|---|---|---|
| maven | com.hazelcast:hazelcast-enterprise | >= 4.1, <= 4.1.9 | 4.1.10 |
| maven | com.hazelcast:hazelcast | <= 3.12.12 | 3.12.13 |
| maven | com.hazelcast:hazelcast | >= 4.0, <= 4.0.6 | |
| maven | com.hazelcast:hazelcast | >= 4.1, <= 4.1.9 | 4.1.10 |
| maven | com.hazelcast:hazelcast | >= 4.2, <= 4.2.5 | 4.2.6 |
| maven | com.hazelcast:hazelcast | >= 5.0, <= 5.0.3 | 5.0.4 |
| maven | com.hazelcast:hazelcast | >= 5.1, <= 5.1.2 | 5.1.3 |
| maven | com.hazelcast.jet:hazelcast-jet | <= 4.5.3 | 4.5.4 |
| maven | io.apiman:apiman-distro-vertx | < 3.0.0.Final | 3.0.0.Final |
| maven | io.apiman:apiman-gateway-platforms-vertx | < 3.0.0.Final | 3.0.0.Final |
| maven | com.hazelcast.jet:hazelcast-jet-enterprise | <= 4.5.3 | 4.5.4 |
| maven | com.hazelcast:hazelcast-enterprise | <= 3.12.12 | 3.12.13 |
| maven | com.hazelcast:hazelcast-enterprise | >= 5.1, <= 5.1.2 | 5.1.3 |
| maven | com.hazelcast:hazelcast-enterprise | >= 5.0, <= 5.0.3 | 5.0.4 |
| maven | com.hazelcast:hazelcast-enterprise | >= 4.2, <= 4.2.5 | 4.2.6 |
| maven | com.hazelcast:hazelcast-enterprise | >= 4.0, <= 4.0.6 |
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.