CVE-2024-55886

CVSS 3.1 Score 6.9 of 10 (medium)

Details

Published Dec 12, 2024
CWE ID 287

Summary

CVE-2024-55886 is a vulnerability affecting the OpenSearch Data Prepper component, specifically the OpenTelemetry Logs source. Inversions prior to 2.10.2 allow unauthenticated access for certain custom authentication plugins in Data Prepper. This issue arises from the implementation of the `GrpcAuthenticationProvider` authentication plugin, where `getHttpAuthenticationService()` method is used instead of `getAuthenticationInterceptor()`. This flaw enables unauthorized users to ingest OpenTelemetry Logs data under specific conditions. The vulnerability does not impact Data Prepper's built-in `http_basic` authentication provider. Users can mitigate the risk by upgrading to Data Prepper 2.10.2 or employing the `http_basic` authentication provider, as well as utilizing an authentication proxy for Data Prepper instances running the OpenTelemetry Logs source.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share