EUVD-2024-1741

Description

Apollo Router is a configurable, graph router written in Rust to run a federated supergraph that uses Apollo Federation 2. The affected versions of Apollo Router contain a bug that in limited circumstances, could lead to unexpected operations being executed which can result in unintended data or effects. This only affects Router instances configured to use distributed query plan caching. The root cause of this defect is a bug in Apollo Router’s cache retrieval logic: When this defect is present and distributed query planning caching is enabled, asking the Router to execute an operation (whether it is a query, a mutation, or a subscription) may result in an unexpected variation of that operation being executed or the generation of unexpected errors. The issue stems from inadvertently executing a modified version of a previously executed operation, whose query plan is stored in the underlying cache (specifically, Redis). Depending on the type of the operation, the result may vary. For a query, results may be fetched that don’t match what was requested (e.g., rather than running `fetchUsers(type: ENTERPRISE)` the Router may run `fetchUsers(type: TRIAL)`. For a mutation, this may result in incorrect mutations being sent to underlying subgraph servers (e.g., rather than sending `deleteUser(id: 10)` to a subgraph, the Router may run `deleteUser(id: 12)`. Users who are using distributed query plan caching, are advised to either upgrade to version 1.45.1 or above or downgrade to version 1.43.2 of the Apollo Router. Apollo Router versions 1.44.0 or 1.45.0 are not recommended for use and have been withdrawn. Users unable to upgrade can disable distributed query plan caching to mitigate this issue.

CVE-2024-32971

EPSS Score:

Comprehensive Technical Analysis of EUVD-2024-1741

1. Vulnerability Assessment and Severity Evaluation

The vulnerability described in EUVD-2024-1741 affects the Apollo Router, a configurable graph router used in federated supergraphs. The issue arises from a bug in the cache retrieval logic when distributed query plan caching is enabled. This bug can lead to the execution of unexpected operations, resulting in unintended data retrieval or modifications.

Severity Evaluation:

Base Score: 9.1
Base Score Version: CVSS 3.1
Base Score Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

The high base score indicates a critical vulnerability. The CVSS vector highlights that the attack vector is network-based (AV:N), requires high complexity to exploit (AC:H), does not require privileges (PR:N) or user interaction (UI:N), and has a high impact on confidentiality, integrity, and availability (C:H/I:H/A:H). The scope change (S:C) indicates that the vulnerability affects components beyond the initial security scope.

2. Potential Attack Vectors and Exploitation Methods

Attack Vectors:

Network-Based Attacks: Given the network-based attack vector (AV:N), an attacker could potentially exploit this vulnerability remotely.
Cache Poisoning: An attacker could manipulate the cache to inject malicious query plans, leading to the execution of unintended operations.
Data Manipulation: By exploiting the bug, an attacker could alter the data retrieved or modified, leading to incorrect data being processed or stored.

Exploitation Methods:

Query Manipulation: An attacker could manipulate queries to retrieve unauthorized data or perform unintended actions.
Mutation Manipulation: An attacker could alter mutations to perform unauthorized actions, such as deleting or modifying data.
Subscription Manipulation: An attacker could manipulate subscriptions to receive unauthorized data updates.

3. Affected Systems and Software Versions

Affected Versions:

Apollo Router versions 1.44.0 and 1.45.0

Unaffected Versions:

Apollo Router versions 1.45.1 and above
Apollo Router version 1.43.2 and below

Mitigation:

Users are advised to upgrade to version 1.45.1 or above, or downgrade to version 1.43.2.
Users unable to upgrade can disable distributed query plan caching to mitigate the issue.

4. Recommended Mitigation Strategies

Immediate Actions:

Upgrade/Downgrade: Upgrade to Apollo Router version 1.45.1 or above, or downgrade to version 1.43.2.
Disable Caching: If upgrading or downgrading is not feasible, disable distributed query plan caching.

Long-Term Strategies:

Regular Updates: Ensure that all software components are regularly updated to the latest versions.
Monitoring: Implement monitoring and logging to detect any unusual activity or errors related to query plan caching.
Access Controls: Enforce strict access controls to limit who can configure and manage the Apollo Router.

5. Impact on European Cybersecurity Landscape

The vulnerability in Apollo Router could have significant implications for organizations relying on federated supergraphs for data management and retrieval. Given the high impact on confidentiality, integrity, and availability, this vulnerability poses a risk to data security and operational continuity. Organizations in Europe using Apollo Router should prioritize addressing this vulnerability to ensure compliance with data protection regulations such as GDPR.

6. Technical Details for Security Professionals

Root Cause:

The root cause is a bug in Apollo Router’s cache retrieval logic when distributed query plan caching is enabled.
The bug results in the execution of a modified version of a previously executed operation, leading to unintended data retrieval or modifications.

Technical Mitigation:

Code Review: Conduct a thorough code review of the cache retrieval logic to identify and fix similar issues.
Testing: Implement comprehensive testing for query plan caching to ensure that operations are executed as intended.
Security Audits: Regularly perform security audits to identify and mitigate potential vulnerabilities in the Apollo Router and other critical components.

References:

By addressing this vulnerability promptly and implementing robust mitigation strategies, organizations can significantly reduce the risk of unintended data operations and ensure the security and integrity of their federated supergraphs.

Description

CVE-2024-32971

EPSS Score:

Comprehensive Technical Analysis of EUVD-2024-1741

1. Vulnerability Assessment and Severity Evaluation

Severity Evaluation:

Base Score: 9.1
Base Score Version: CVSS 3.1
Base Score Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

2. Potential Attack Vectors and Exploitation Methods

Attack Vectors:

Network-Based Attacks: Given the network-based attack vector (AV:N), an attacker could potentially exploit this vulnerability remotely.
Cache Poisoning: An attacker could manipulate the cache to inject malicious query plans, leading to the execution of unintended operations.
Data Manipulation: By exploiting the bug, an attacker could alter the data retrieved or modified, leading to incorrect data being processed or stored.

Exploitation Methods:

Query Manipulation: An attacker could manipulate queries to retrieve unauthorized data or perform unintended actions.
Mutation Manipulation: An attacker could alter mutations to perform unauthorized actions, such as deleting or modifying data.
Subscription Manipulation: An attacker could manipulate subscriptions to receive unauthorized data updates.

3. Affected Systems and Software Versions

Affected Versions:

Apollo Router versions 1.44.0 and 1.45.0

Unaffected Versions:

Apollo Router versions 1.45.1 and above
Apollo Router version 1.43.2 and below

Mitigation:

Users are advised to upgrade to version 1.45.1 or above, or downgrade to version 1.43.2.
Users unable to upgrade can disable distributed query plan caching to mitigate the issue.

4. Recommended Mitigation Strategies

Immediate Actions:

Upgrade/Downgrade: Upgrade to Apollo Router version 1.45.1 or above, or downgrade to version 1.43.2.
Disable Caching: If upgrading or downgrading is not feasible, disable distributed query plan caching.

Long-Term Strategies:

Regular Updates: Ensure that all software components are regularly updated to the latest versions.
Monitoring: Implement monitoring and logging to detect any unusual activity or errors related to query plan caching.
Access Controls: Enforce strict access controls to limit who can configure and manage the Apollo Router.

5. Impact on European Cybersecurity Landscape

6. Technical Details for Security Professionals

Root Cause:

The root cause is a bug in Apollo Router’s cache retrieval logic when distributed query plan caching is enabled.
The bug results in the execution of a modified version of a previously executed operation, leading to unintended data retrieval or modifications.

Technical Mitigation:

Code Review: Conduct a thorough code review of the cache retrieval logic to identify and fix similar issues.
Testing: Implement comprehensive testing for query plan caching to ensure that operations are executed as intended.
Security Audits: Regularly perform security audits to identify and mitigate potential vulnerabilities in the Apollo Router and other critical components.

References:

Description

EPSS Score:

Comprehensive Technical Analysis of EUVD-2024-1741

1. Vulnerability Assessment and Severity Evaluation

2. Potential Attack Vectors and Exploitation Methods

3. Affected Systems and Software Versions

4. Recommended Mitigation Strategies

5. Impact on European Cybersecurity Landscape

6. Technical Details for Security Professionals

References

Affected Products

Vendors

EUVD-2024-1741

Description

EPSS Score:

Comprehensive Technical Analysis of EUVD-2024-1741

1. Vulnerability Assessment and Severity Evaluation

2. Potential Attack Vectors and Exploitation Methods

3. Affected Systems and Software Versions

4. Recommended Mitigation Strategies

5. Impact on European Cybersecurity Landscape

6. Technical Details for Security Professionals

References

Affected Products

Vendors