Vulnerability Description
Progress Chef Infra Server before 15.7 allows a local attacker to exploit a /var/opt/opscode/local-mode-cache/backup world-readable temporary backup path to access sensitive information, resulting in the disclosure of all indexed node data, because OpenSearch credentials are exposed. (The data typically includes credentials for additional systems.) The attacker must wait for an admin to run the "chef-server-ctl reconfigure" command.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Progress | Chef Infra Server | >= 12.0.0, < 15.7.0 |
Related Weaknesses (CWE)
References
- https://blog.mondoo.com/chef-infra-server-cve-2023-28864-impact-and-remediationMitigationThird Party Advisory
- https://docs.chef.io/release_notes_server/Release Notes
- https://github.com/chef/chef-server/blob/8a2dc82148844767f7c7728633a03dcee812e56Product
- https://blog.mondoo.com/chef-infra-server-cve-2023-28864-impact-and-remediationMitigationThird Party Advisory
- https://docs.chef.io/release_notes_server/Release Notes
- https://github.com/chef/chef-server/blob/8a2dc82148844767f7c7728633a03dcee812e56Product
FAQ
What is CVE-2023-28864?
CVE-2023-28864 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Progress Chef Infra Server before 15.7 allows a local attacker to exploit a /var/opt/opscode/local-mode-cache/backup world-readable temporary backup path to access sensitive information, resulting in ...
How severe is CVE-2023-28864?
CVE-2023-28864 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-28864?
Check the references section above for vendor advisories and patch information. Affected products include: Progress Chef Infra Server.