Due to insufficient verification, an attacker could use a malicious client to bypass authentication checks and run RPC commands in a region. This has been addressed in MAAS and updated in the corresponding snaps.
Weakness
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Metal_as_a_service | Canonical | 3.1.0 (including) | 3.1.4 (excluding) |
| Metal_as_a_service | Canonical | 3.2.0 (including) | 3.2.11 (excluding) |
| Metal_as_a_service | Canonical | 3.3.0 (including) | 3.3.8 (excluding) |
| Metal_as_a_service | Canonical | 3.4.0 (including) | 3.4.4 (excluding) |
| Metal_as_a_service | Canonical | 3.5.0 (including) | 3.5.0 (including) |
| Maas | Ubuntu | focal | * |
Potential Mitigations
Related Attack Patterns
- https://cwe.mitre.org/data/definitions/114.html
- https://cwe.mitre.org/data/definitions/115.html
- https://cwe.mitre.org/data/definitions/151.html
- https://cwe.mitre.org/data/definitions/194.html
- https://cwe.mitre.org/data/definitions/22.html
- https://cwe.mitre.org/data/definitions/57.html
- https://cwe.mitre.org/data/definitions/593.html
- https://cwe.mitre.org/data/definitions/633.html
- https://cwe.mitre.org/data/definitions/650.html
- https://cwe.mitre.org/data/definitions/94.html