Description
In Apache Ozone versions prior to 1.2.0, Initially generated block tokens are persisted to the metadata database and can be retrieved with authenticated users with permission to the key. Authenticated users may use them even after access is revoked.
Remediation
References
http://www.openwall.com/lists/oss-security/2021/11/19/1
https://mail-archives.apache.org/mod_mbox/ozone-dev/202111.mbox/%3C5029c1ac-4685-8492-e3cb-ab48c5c370cf%40apache.org%3E
Related Vulnerabilities
CVE-2018-1199 Vulnerability in maven package org.springframework.security:spring-security-web
CVE-2016-10553 Vulnerability in npm package sequelize
CVE-2017-16192 Vulnerability in npm package getcityapi.yoehoehne
CVE-2020-17527 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2020-1948 Vulnerability in maven package org.apache.dubbo:dubbo-common