Red Hat OpenShift Data Science: Plain-Text S3 Cred Leak via Elyra Export
CVE-2023-3361 Published on October 4, 2023
S3 credentials included when exporting elyra notebook
A flaw was found in Red Hat OpenShift Data Science. When exporting a pipeline from the Elyra notebook pipeline editor as Python DSL or YAML, it reads S3 credentials from the cluster (ds pipeline server) and saves them in plain text in the generated output instead of an ID for a Kubernetes secret.
Vulnerability Analysis
CVE-2023-3361 can be exploited with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity and availability.
Timeline
Reported to Red Hat.
Made public.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2023-3361 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2023-3361
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-3361 are published in these products:
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.