Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unauthenticated API Request show Cloudstack Version #10072

Open
mredaelli02 opened this issue Dec 9, 2024 · 3 comments · May be fixed by #10575
Open

Unauthenticated API Request show Cloudstack Version #10072

mredaelli02 opened this issue Dec 9, 2024 · 3 comments · May be fixed by #10575
Assignees
@gpordeus
Milestone
4.21.0

Comments

@mredaelli02
Copy link

ISSUE TYPE
  • Other
COMPONENT NAME
API
CLOUDSTACK VERSION
ALL
CONFIGURATION

advanced networking

SUMMARY

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
https://cloud.example.com/client/api?command=samlSso
The return error code show the Cloudstack Version that is considered as a CWE-200 level CVSS-2

<loginresponse cloud-stack-version="4.19.0.1">
    <errorcode>531
    </error code>
    <errortext>Your authenticated user is not authorized for SAML Single Sign-On, please contact
        your administrator</errortext>
</loginresponse>
Kali Linux Kali Tools Kali Docs Kali Forums Kali NetHunter
Exploit-DB Goo
This XML file does not appear to have any style information associated with it. The
-
<errorresponse cloud-stack-version="4.19.0.1">
    <errorcode>401</errorcode> -<errortext>
        unable to verify user credentials and/or request signature </errortext>
</errorresponse>
STEPS TO REPRODUCE
Request an unauthenticated API Request to the server
EXPECTED RESULTS
Error code witout sesible information
ACTUAL RESULTS
Return Cloudstack Version
@gpordeus
Copy link
Collaborator

gpordeus commented Dec 9, 2024

Hi, @mredaelli02 !

Thanks for reporting it, it's great to see interest in the topic.

I'm working on adding two global configurations (expose.cloudstack.version.api.xml.response and expose.cloudstack.version.api.list.capabilities), I'll add an authenticated check as well to deal with this.

I'm finishing testing and will open a PR soon. Would it be alright if I assign myself this issue?

@DaanHoogland DaanHoogland added this to the 4.21.0 milestone Jan 2, 2025
@gpordeus gpordeus linked a pull request Mar 15, 2025 that will close this issue
Open
14 tasks
@gpordeus
Copy link
Collaborator

@mredaelli02 Sorry it took so long, it's here (#10575) if you want to check it out.

@mredaelli02
Copy link
Author

Hi @gpordeus Thank you so much for the update.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@gpordeus gpordeus

Labels
None yet
Projects
None yet
Milestone
4.21.0
Development

Successfully merging a pull request may close this issue.

Hide CloudStack version from XML response when unauthenticated scclouds/cloudstack
3 participants
@DaanHoogland @gpordeus @mredaelli02