Vulnerability Details : CVE-2023-22746
CKAN is an open-source DMS (data management system) for powering data hubs and data portals. When creating a new container based on one of the Docker images listed below, the same secret key was being used by default. If the users didn't set a custom value via environment variables in the `.env` file, that key was shared across different CKAN instances, making it easy to forge authentication requests. Users overriding the default secret key in their own `.env` file are not affected by this issue. Note that the legacy images (ckan/ckan) located in the main CKAN repo are not affected by this issue. The affected images are ckan/ckan-docker, (ckan/ckan-base images), okfn/docker-ckan (openknowledge/ckan-base and openknowledge/ckan-dev images) keitaroinc/docker-ckan (keitaro/ckan images).
Products affected by CVE-2023-22746
- cpe:2.3:a:okfn:ckan:*:*:*:*:*:*:*:*
- cpe:2.3:a:okfn:ckan:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-22746
0.11%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 46 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-22746
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
3.9
|
3.6
|
NIST | |
8.6
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L |
3.9
|
4.7
|
GitHub, Inc. |
CWE ids for CVE-2023-22746
-
The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.Assigned by: security-advisories@github.com (Primary)
-
The product uses a constant value, name, or reference, but this value can (or should) vary across different environments.Assigned by: security-advisories@github.com (Primary)
References for CVE-2023-22746
-
https://github.com/ckan/ckan/commit/4c22c135fa486afa13855d1cdb9765eaf418d2aa
Perform checks on provided id when creating user · ckan/ckan@4c22c13 · GitHubPatch
-
https://github.com/ckan/ckan/commit/44af0f0a148fcc0e0fbcf02fe69b7db13459a84b
Perform checks on provided id when creating user · ckan/ckan@44af0f0 · GitHubPatch
-
https://github.com/ckan/ckan/security/advisories/GHSA-pr8j-v4c8-h62x
Session secret shared across instances using Docker images · Advisory · ckan/ckan · GitHubThird Party Advisory
Jump to