Main Vulnerability Database SB2023021202

SB2023021202 - SUSE update for SUSE Manager Client Tools

Published: February 12, 2023

Security Bulletin ID SB2023021202

Severity

Medium

Patch available

YES

Number of vulnerabilities 6

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 6 secuirty vulnerabilities.

1) Improper Verification of Cryptographic Signature (CVE-ID: CVE-2022-31123)

The vulnerability allows a remote attacker to compromise the affected instance.

The vulnerability exists due to missing signature verification mechanism. A remote attacker can trick the server admin into installing a malicious plugin even though unsigned plugins are not allowed.

2) Information disclosure (CVE-ID: CVE-2022-31130)

The vulnerability allows a remote user to gain access to potentially sensitive information.

The vulnerability exists due to the GitLab data source plugin leaks the API key to GitLab. A remote privileged user can expose Grafana authentication token to a third-party.

3) Information disclosure (CVE-ID: CVE-2022-39201)

The vulnerability allows a remote user to gain access to potentially sensitive information.

The vulnerability exists due to Grafana leaks the authentication cookie of users to plugins. A remote user can gain unauthorized access to sensitive information.

4) Improper Authentication (CVE-ID: CVE-2022-39229)

The vulnerability allows a remote attacker to deny access to the application.

The vulnerability exists due to a logic error in the authentication process, where application allows usage of the same email address by different accounts. A remote user can set an existing email address that belongs to another user as their username and prevent that user from accessing the application.

5) Input validation error (CVE-ID: CVE-2022-39306)

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to insufficient validation of user-supplied input. A remote user can use the invitation link to sign up with an arbitrary username/email with a malicious intent.

6) Information disclosure (CVE-ID: CVE-2022-39307)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the application when using the forget password on the login page. A remote attacker can gain unauthorized access to sensitive information on the system.

Remediation

Install update from vendor's website.

References

https://www.suse.com/support/update/announcement/2023/suse-su-20230352-1/

Vulnerable Software

SUSE Manager Tools: 12 BETA
spacewalk-client-tools: before 4.3.14-52.83.1
spacewalk-client-setup: before 4.3.14-52.83.1
spacewalk-check: before 4.3.14-52.83.1
spacecmd: before 4.3.18-38.115.1
python2-spacewalk-client-tools: before 4.3.14-52.83.1
python2-spacewalk-client-setup: before 4.3.14-52.83.1
python2-spacewalk-check: before 4.3.14-52.83.1
python2-rhnlib: before 4.3.5-21.46.1
python2-mgr-push: before 4.3.5-1.24.1
python2-mgr-osad: before 4.3.7-1.42.1
python2-mgr-osa-common: before 4.3.7-1.42.1
mgr-push: before 4.3.5-1.24.1
mgr-osad: before 4.3.7-1.42.1
kiwi-desc-saltboot: before 0.1.1673279145.e7616bd-1.32.1
python2-uyuni-common-libs: before 4.3.7-1.30.1
grafana: before 8.5.15-1.39.1