CVE-2020-1960

Description

A vulnerability in Apache Flink (1.1.0 to 1.1.5, 1.2.0 to 1.2.1, 1.3.0 to 1.3.3, 1.4.0 to 1.4.2, 1.5.0 to 1.5.6, 1.6.0 to 1.6.4, 1.7.0 to 1.7.2, 1.8.0 to 1.8.3, 1.9.0 to 1.9.2, 1.10.0) where, when running a process with an enabled JMXReporter, with a port configured via metrics.reporter.reporter_name>.port, an attacker with local access to the machine and JMX port can execute a man-in-the-middle attack using a specially crafted request to rebind the JMXRMI registry to one under the attackers control. This compromises any connection established to the process via JMX, allowing extraction of credentials and any other transferred data.

Risk Information

Base Score

4.7

MODERATE

Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS Score

Exploitation Probability

0.09

Associated Vulnerability

Vulnerability	OS Platform
Vulnerabilities CVE-2020-1960 are fixed in Apache-flink-core 1.9.3	Windows
Vulnerabilities CVE-2020-1960 are fixed in Apache-flink-core 1.10.1	Windows
Vulnerabilities CVE-2020-1960 are fixed in Apache-flink-core for Linux 1.9.3	Linux
Vulnerabilities CVE-2020-1960 are fixed in Apache-flink-core for Linux 1.10.1	Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234