In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already. A possible workaround is to ensure the directories have the desired permission (700).
CVE-2020-15113 - Medium Severity Vulnerability
The Prometheus monitoring system and time series database.
Dependency Hierarchy: - github.com/m3db/m3/src/query/functions/tag-a6995b403d76d304f048402de65df060ccc5c09e (Root Library) - github.com/m3db/m3/src/query/parser-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/query/functions/linear-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/query/functions/lazy-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/query/executor/transform-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/query/storage-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/query/storage/m3/consolidators - github.com/m3db/m3/src/query/block-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/query/ts-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/query/util-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/query/api/v1/options-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/query/api/v1/handler/prometheus/handleroptions-docs/v1.0 - github.com/m3db/m3/src/query/errors-a6995b403d76d304f048402de65df060ccc5c09e - github.com/m3db/m3/src/x/net/http-a6995b403d76d304f048402de65df060ccc5c09e - github.com/prometheus/prometheus/promql-2826fbeeb70ebdf15a1338d0b73621318a2ab962 - :x: **github.com/prometheus/prometheus/tsdb-v2.28.0-rc.0** (Vulnerable Library)
Found in HEAD commit: a62d2ead44380e2c1668bbbf026d5385b98d56ec
Found in base branch: master
In etcd before versions 3.3.23 and 3.4.10, certain directory paths are created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients) with restricted access permissions (700) by using the os.MkdirAll. This function does not perform any permission checks when a given directory path exists already. A possible workaround is to ensure the directories have the desired permission (700).
Publish Date: 2020-08-05
URL: CVE-2020-15113
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Local - Attack Complexity: High - Privileges Required: High - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: None
For more information on CVSS3 Scores, click here.Type: Upgrade version
Release Date: 2020-08-05
Fix Resolution: 3.4.10, 3.3.23