9.9

CVE-2022-39366

Exploit

EPSS 0.23%
Veröffentlicht 28.10.2022 17:15:23
Zuletzt bearbeitet 03.12.2025 21:05:03
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

DataHub is an open-source metadata platform. Prior to version 0.8.45, the `StatelessTokenService` of the DataHub metadata service (GMS) does not verify the signature of JWT tokens. This allows an attacker to connect to DataHub instances as any user if Metadata Service authentication is enabled. This vulnerability occurs because the `StatelessTokenService` of the Metadata service uses the `parse` method of `io.jsonwebtoken.JwtParser`, which does not perform a verification of the cryptographic token signature. This means that JWTs are accepted regardless of the used algorithm. This issue may lead to an authentication bypass. Version 0.8.45 contains a patch for the issue. There are no known workarounds.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 3 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Datahub ≫ Datahub Version < 0.8.45

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.23%	0.451

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
security-advisories@github.com	9.9	3.9	5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:L

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

CWE-303 Incorrect Implementation of Authentication Algorithm

The requirements for the product dictate the use of an established authentication algorithm, but the implementation of the algorithm is incorrect.

CWE-347 Improper Verification of Cryptographic Signature

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

https://codeql.github.com/codeql-query-help/java/java-missing-jwt-signature-check/

Third Party Advisory

https://github.com/datahub-project/datahub/blob/aa146db611e3a4ca3aa17bb740783f789d4444d3/metadata-service/auth-impl/src/main/java/com/datahub/authentication/token/StatelessTokenService.java#L134

Third Party Advisory

Exploit

https://github.com/datahub-project/datahub/blob/aa146db611e3a4ca3aa17bb740783f789d4444d3/metadata-service/auth-impl/src/main/java/com/datahub/authentication/token/StatelessTokenService.java#L30

Third Party Advisory

Exploit

https://github.com/datahub-project/datahub/releases/tag/v0.8.45

Third Party Advisory

https://github.com/datahub-project/datahub/security/advisories/GHSA-r8gm-v65f-c973

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-39366

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-39366

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-39366

EUVD