{"id":1704,"date":"2025-04-25T14:33:56","date_gmt":"2025-04-25T14:33:56","guid":{"rendered":"http:\/\/localhost\/?p=1704"},"modified":"2025-04-25T14:33:56","modified_gmt":"2025-04-25T14:33:56","slug":"security-bulletin-vulnerabilities-in-apache-solr-lucene-and-apache-zookeeper-affect-ibm-operations-a","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=1704","title":{"rendered":"Security Bulletin: Vulnerabilities in Apache Solr (lucene) and Apache ZooKeeper affect IBM Operations Analytics – Log Analysis (CVE-2024-23454, CVE-2024-30171, CVE-2024-23944)"},"content":{"rendered":"
\n

Vulnerability Details<\/h2>\n
\n

Basic Information<\/h3>\n\n\n\n\n\n\n
Title<\/th>\nSecurity Bulletin: Vulnerabilities in Apache Solr (lucene) and Apache ZooKeeper affect IBM Operations Analytics – Log Analysis (CVE-2024-23454, CVE-2024-30171, CVE-2024-23944)<\/td>\n<\/tr>\n
Type<\/th>\nibm<\/td>\n<\/tr>\n
Published<\/th>\n2025-04-25T16:00:41<\/td>\n<\/tr>\n
Last Seen<\/th>\n2025-04-25T18:56:28<\/td>\n<\/tr>\n
CVSS Score<\/th>\n6.2 (MEDIUM)<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

CVSS v3 Details<\/h3>\n\n\n\n\n\n\n\n\n\n
Attack Vector<\/th>\nLOCAL<\/td>\n<\/tr>\n
Attack Complexity<\/th>\nLOW<\/td>\n<\/tr>\n
Privileges Required<\/th>\nNONE<\/td>\n<\/tr>\n
User Interaction<\/th>\nNONE<\/td>\n<\/tr>\n
Scope<\/th>\nUNCHANGED<\/td>\n<\/tr>\n
Confidentiality Impact<\/th>\nHIGH<\/td>\n<\/tr>\n
Integrity Impact<\/th>\nNONE<\/td>\n<\/tr>\n
Availability Impact<\/th>\nNONE<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

CVE Information<\/h3>\n\n\n\n\n
CVE IDs<\/th>\nCVE-2024-23454, CVE-2024-23944, CVE-2024-30171<\/td>\n<\/tr>\n
CWE<\/th>\n<\/td>\n<\/tr>\n
Bulletin Family<\/th>\nsoftware<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

Description<\/h3>\n
\n ## Summary<\/p>\n

There are vulnerabilities in Bouncy Castle, Apache Hadoop that potentially expose sensitive information that affect Apache Solr and Apache ZooKeeper used by IBM Operations Analytics – Log Analysis<\/p>\n

## Vulnerability Details<\/p>\n

**CVEID:**CVE-2024-23454
\n**DESCRIPTION:** Apache Hadoop could allow a local authenticated attacker to obtain sensitive information, caused by not set permissions for temporary directory by default in the RunJar.run() function. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
\n**CWE:**CWE-269: Improper Privilege Management
\n**CVSS Source:** IBM X-Force
\n**CVSS Base score:** 3.3
\n**CVSS Vector:**(CVSS:3.1\/AV:L\/AC:L\/PR:L\/UI:N\/S:U\/C:L\/I:N\/A:N) <\/p>\n

**CVEID:**CVE-2024-30171
\n**DESCRIPTION:** The Bouncy Castle Crypto Package For Java could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw in the RSA decryption (both PKCS#1v1.5 and OAEP) feature. By utilize timing side-channel attack techniques, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
\n**CWE:**CWE-203: Observable Discrepancy
\n**CVSS Source:** IBM X-Force
\n**CVSS Base score:** 5.3
\n**CVSS Vector:**(CVSS:3.0\/AV:N\/AC:H\/PR:L\/UI:N\/S:U\/C:H\/I:N\/A:N) <\/p>\n

**CVEID:**CVE-2024-23944
\n**DESCRIPTION:** Information disclosure in persistent watchers handling in Apache ZooKeeper due to missing ACL check. It allows an attacker to monitor child znodes by attaching a persistent watcher (addWatch command) to a parent which the attacker has already access to. ZooKeeper server doesn’t do ACL check when the persistent watcher is triggered and as a consequence, the full path of znodes that a watch event gets triggered upon is exposed to the owner of the watcher. It’s important to note that only the path is exposed by this vulnerability, not the data of znode, but since znode path can contain sensitive information like user name or login ID, this issue is potentially critical. Users are recommended to upgrade to version 3.9.2, 3.8.4 which fixes the issue.
\n**CWE:**CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
\n**CVSS Source:** IBM X-Force
\n**CVSS Base score:** 4.3
\n**CVSS Vector:**(CVSS:3.0\/AV:N\/AC:L\/PR:L\/UI:N\/S:U\/C:L\/I:N\/A:N)<\/p>\n

## Affected Products and Versions<\/p>\n

Affected Product(s)| Version(s)
\n—|—
\nLog Analysis| 1.3.7.0.
\nLog Analysis| 1.3.7.1
\nLog Analysis| 1.3.7.2
\nLog Analysis| 1.3.8.0
\nLog Analysis| 1.3.8.1 <\/p>\n

## Remediation\/Fixes<\/p>\n

Principal Product and Version(s)| Fix details
\n—|—
\nIBM Operations Analytics – Log Analysis version 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1| IBM strongly recommend addressing the vulnerability now by applying 1.3.8.2 (1.3.8-TIV-IOALA-FP2) or a later fix pack available from IBM fix central <\/p>\n

## Workarounds and Mitigations<\/p>\n

None<\/p>\n

##\n <\/p><\/div>\n<\/p><\/div>\n

\n

Impact Assessment<\/h3>\n\n\n\n
Base Score<\/th>\n6.2<\/td>\n<\/tr>\n
Severity<\/th>\nMEDIUM<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

View full CVE details<\/a><\/p>\n<\/p><\/div>\n<\/div>\n