← voltar
CVE-2024-36105

dbt allows Binding to an Unrestricted IP Address via socketsocket

CVSS 5.3 MEDIUMEPSS 0.7%CWE-1327
Em resumo

O servidor de documentação do dbt estava se conectando a todas as interfaces de rede (0.0.0.0 e ::) por padrão, permitindo que qualquer pessoa na rede acessasse a documentação em vez de apenas a máquina local. Isso poderia expor dados sensíveis da documentação a usuários não autorizados remotamente.

Detalhe técnico

A falha envolve binding a endereços IP sem restrição (INADDR_ANY/IN6ADDR_ANY) via socket no comando dbt docs serve. Permite acesso remoto pela rede à interface de documentação quando o usuário esperava acesso apenas local. A correção força binding ao localhost (127.0.0.1/::1) por padrão nas versões afetadas.

Resumo gerado e traduzido por IA a partir da descrição oficial.
dbt enables data analysts and engineers to transform their data using the same practices that software engineers use to build applications. Prior to versions 1.6.15, 1.7.15, and 1.8.1, Binding to `INADDR_ANY (0.0.0.0)` or `IN6ADDR_ANY (::)` exposes an application on all network interfaces, increasing the risk of unauthorized access. As stated in the Python docs, a special form for address is accepted instead of a host address: `''` represents `INADDR_ANY`, equivalent to `"0.0.0.0"`. On systems with IPv6, '' represents `IN6ADDR_ANY`, which is equivalent to `"::"`. A user who serves docs on an unsecured public network, may unknowingly be hosting an unsecured (http) web site for any remote user/system to access on the same network. The issue has has been mitigated in dbt-core v1.6.15, dbt-core v1.7.15, and dbt-core v1.8.1 by binding to localhost explicitly by default in `dbt docs serve`.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Produtos afetados
dbt-labs · dbt-core

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://cwe.mitre.org/data/definitions/1327.htmlhttps://docs.python.org/3/library/socket.html#socket-familieshttps://docs.securesauce.dev/rules/PY030https://github.com/dbt-labs/dbt-core/blob/main/core/dbt/task/docs/serve.py#L23C38-L23C39https://github.com/dbt-labs/dbt-core/commit/0c08d7a19ad1740be3cb0b2e6d9d64f6537176f7https://github.com/dbt-labs/dbt-core/issues/10209https://github.com/dbt-labs/dbt-core/pull/10208https://github.com/dbt-labs/dbt-core/releases/tag/v1.6.15https://github.com/dbt-labs/dbt-core/releases/tag/v1.7.15https://github.com/dbt-labs/dbt-core/releases/tag/v1.8.1https://github.com/dbt-labs/dbt-core/security/advisories/GHSA-pmrx-695r-4349