Auth bypass in Quarkus
CVE-2023-4853
A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting requests, resulting in incorrect evaluation of permissions. This issue could allow an attacker to bypass th…
EPSS: 0.012 (64.6th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Quarkus
- Red Hat Openshift Serverless 1 On Rhel 8 — versions 0:1.9.2-3.el8
- Red Hat Build Of Optaplanner 8
- Red Hat Build Of Quarkus 2.13.8.sp2 — versions 2.13.8.Final-redhat-00005
- Red Hat Camel Extensions For Quarkus 2.13.3-1
- Red Hat Openshift Serverless 1.30 — versions 1.9.2-3, 1.30.1-1, 1.30.0-5
- Red Hat Process Automation 7
- Red Hat Rhel-8 Based Middleware Containers — versions 7.13.4-3, 7.13.4-2
- Red Hat Rhint Camel-k-1.10.2
- Red Hat Rhint Service Registry 2.5.4 Ga
Weakness classification (CWE)
Public proof-of-concept exploits
References
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- secalert@redhat.com (x_refsource_REDHAT, Mitigation, vdb-entry, Vendor Advisory)
Frequently asked questions
- What is CVE-2023-4853?
- CVE-2023-4853 is a high-severity vulnerability in Quarkus, classified under CWE-148. CVSS score: 8.1/10. Published 2023-09-20.
- How severe is CVE-2023-4853?
- High severity. CVSS v3 base score is 8.1 out of 10.
- Is CVE-2023-4853 known to be exploited?
- 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.