Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-27220

The Eclipse Hono AMQP and MQTT protocol adapters do not check whether an authenticated gateway device is authorized to receive command & control messages when it has subscribed only to commands for a specific device. The missing check involves verifying that the command target device is configured giving permission for the gateway device to act on its behalf. This means an authenticated device of a certain tenant, notably also a non-gateway device acting like a gateway, may receive command & control messages targeted at a different device of the same tenant without corresponding permissions getting checked.

Published

2021-01-14T23:15:13.040

Last Modified

2024-11-21T05:20:53.370

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

8.0

Impact Score

10.0

Weaknesses

Type: Secondary
CWE-862
Type: Primary
CWE-862

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	eclipse	hono	≤ 1.4.4	Yes
Application	eclipse	hono	1.5.0	Yes

References

https://bugs.eclipse.org/bugs/show_bug.cgi?id=569856 Vendor Advisory ([email protected])
https://bugs.eclipse.org/bugs/show_bug.cgi?id=569856 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)