QwikSec

Security Database

CVE

CWE

Training

CVE-2021-25646

Published: Jan 29, 2021

Modified: Feb 13, 2025

PUBLISHED

Description

Apache Druid includes the ability to execute user-provided JavaScript code embedded in various types of requests. This functionality is intended for use in high-trust environments, and is disabled by default. However, in Druid 0.20.0 and earlier, it is possible for an authenticated user to send a specially-crafted request that forces Druid to run user-provided JavaScript code for that request, regardless of server configuration. This can be leveraged to execute code on the target machine with the privileges of the Druid server process.

Vendor	Product	Versions
Apache Software Foundation	Apache Druid	affected `0.20.0 and earlier - <= 0.20.0`

References

https://lists.apache.org/thread.html/rfda8a3aa6ac06a80c5cbfdeae0fc85f88a5984e32ea05e6dda46f866%40%3Cdev.druid.apache.org%3E

x_refsource_MISC

[oss-security] 20210129 CVE-2021-25646: Authenticated users can override system configurations in their requests which allows them to execute arbitrary code.

mailing-list

x_refsource_MLIST

[druid-dev] 20210129 Re: [druid-user] Re: CVE-2021-25646: Authenticated users can override system configurations in their requests which allows them to execute arbitrary code.

mailing-list

x_refsource_MLIST

[druid-dev] 20210129 Re: CVE-2021-25646: Authenticated users can override system configurations in their requests which allows them to execute arbitrary code.

mailing-list

x_refsource_MLIST

[announce] 20210129 Subject: [CVE-2021-25646] Apache Druid remote code execution vulnerability

mailing-list

x_refsource_MLIST

[druid-commits] 20210204 [GitHub] [druid] jihoonson merged pull request #10818: Fix CVE-2021-25646

mailing-list

x_refsource_MLIST

[druid-commits] 20210204 [GitHub] [druid] jihoonson commented on pull request #10818: Fix CVE-2021-25646

mailing-list

x_refsource_MLIST

[druid-commits] 20210204 [GitHub] [druid] jihoonson opened a new pull request #10854: [Backport] Fix CVE-2021-25646

mailing-list

x_refsource_MLIST

[druid-commits] 20210204 [druid] branch 0.21.0 updated: Fix CVE-2021-25646 (#10818) (#10854)

mailing-list

x_refsource_MLIST

[druid-commits] 20210204 [GitHub] [druid] jihoonson merged pull request #10854: [Backport] Fix CVE-2021-25646

mailing-list

x_refsource_MLIST

[druid-commits] 20210205 [GitHub] [druid] jihoonson opened a new pull request #10854: [Backport] Fix CVE-2021-25646

mailing-list

x_refsource_MLIST

[druid-commits] 20210205 [GitHub] [druid] jihoonson merged pull request #10818: Fix CVE-2021-25646

mailing-list

x_refsource_MLIST

[druid-commits] 20210205 [GitHub] [druid] jihoonson commented on pull request #10818: Fix CVE-2021-25646

mailing-list

x_refsource_MLIST

[druid-commits] 20210205 [GitHub] [druid] jihoonson merged pull request #10854: [Backport] Fix CVE-2021-25646

mailing-list

x_refsource_MLIST

[druid-dev] 20210331 Regarding the 0.21.0 release

mailing-list

x_refsource_MLIST

http://packetstormsecurity.com/files/162345/Apache-Druid-0.20.0-Remote-Command-Execution.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.