CVE-2024-55886
CVSS 3.1 Score 6.9 of 10 (medium)
Details
Summary
CVE-2024-55886 is a vulnerability affecting the OpenSearch Data Prepper component, specifically the OpenTelemetry Logs source. Inversions prior to 2.10.2 allow unauthenticated access for certain custom authentication plugins in Data Prepper. This issue arises from the implementation of the `GrpcAuthenticationProvider` authentication plugin, where `getHttpAuthenticationService()` method is used instead of `getAuthenticationInterceptor()`. This flaw enables unauthorized users to ingest OpenTelemetry Logs data under specific conditions. The vulnerability does not impact Data Prepper's built-in `http_basic` authentication provider. Users can mitigate the risk by upgrading to Data Prepper 2.10.2 or employing the `http_basic` authentication provider, as well as utilizing an authentication proxy for Data Prepper instances running the OpenTelemetry Logs source.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Data Prepper