CVE-2021-36749 Scanner
CVE-2021-36749 scanner - Improper Access Control vulnerability in Apache Druid
Short Info
Level
Medium
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
1 month
Scan only one
Domain, IPv4, Subdomain
Toolbox
-
Apache Druid is an open-source data store designed for fast OLAP queries using a column-oriented data layout and advanced indexing options. It is intended to be faster and more scalable than traditional relational databases, capable of handling streaming data in real-time. Druid is particularly useful for use cases like time series data, where the data that is coming through an ingestion pipeline goes through an iterative process of incremental updates and queries. Druid provides a robust ingestion system that can handle the difficult problem of moving high volumes of data, including time-series data, from various sources into Druid.
The CVE-2021-36749 vulnerability detected in Apache Druid is related to the HTTP InputSource, which is used to read data from various sources. The issue is that authenticated users can use the HTTP InputSource to read data from unintended sources such as the local file system, with the privileges of the Druid server process. This could lead to serious security issues if attackers use this vulnerability to bypass application-level restrictions by passing a file URL to the HTTP InputSource. If the affected version of Druid is integrated with an application that allows users to specify the HTTP InputSource but not the Local InputSource, users could exploit this vulnerability to read sensitive data.
Exploitation of this vulnerability could lead to severe consequences for businesses and users of Apache Druid. Attackers could use this vulnerability to access sensitive data, including passwords, confidential documents, and other secrets. They could steal intellectual property, damage reputations, and disrupt business operations. Moreover, they could use the information harvested from Druid to launch further attacks that could compromise the entire infrastructure of the affected system or organization.
Thanks to the pro features of the s4e.io platform, you can easily and quickly learn about any potential vulnerabilities in your digital assets. Our platform provides a comprehensive vulnerability assessment for your applications and infrastructure, including Apache Druid. With regular vulnerability scans, you can stay ahead of the attackers and protect your data from potential breaches. Don't wait until it's too late. Sign up for our platform today and secure your digital assets.
REFERENCES
