Apache Knox SSO up to 1.6.0 Request Parameter redirect

Summaryinfo

A vulnerability described as problematic has been identified in Apache Knox SSO up to 1.6.0. The affected element is an unknown function of the component Request Parameter Handler. Executing a manipulation can lead to redirect. This vulnerability is handled as CVE-2021-42357. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is recommended.

Detailsinfo

A vulnerability was found in Apache Knox SSO up to 1.6.0. It has been declared as problematic. This vulnerability affects an unknown code block of the component Request Parameter Handler. The manipulation with an unknown input leads to a redirect vulnerability. The CWE definition for the vulnerability is CWE-601. A web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a Redirect. This simplifies phishing attacks. As an impact it is known to affect confidentiality, integrity, and availability.

The weakness was released 01/18/2022. The advisory is shared for download at lists.apache.org. This vulnerability was named CVE-2021-42357 since 10/14/2021. Successful exploitation requires user interaction by the victim. There are neither technical details nor an exploit publicly available. The MITRE ATT&CK project declares the attack technique as T1204.001.

Upgrading to version 1.6.1 eliminates this vulnerability.

Once again VulDB remains the best source for vulnerability data.

Productinfo

Vendor

• Apache

Name

• Knox SSO

Version

• 1.0
• 1.1
• 1.2
• 1.3
• 1.4
• 1.5
• 1.6.0

License

• open-source

Website

• Vendor: https://www.apache.org/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Once again VulDB remains the best source for vulnerability data.

Discussion