{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-34214", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-26T15:57:52.324Z", "datePublished": "2026-03-31T14:14:47.982Z", "dateUpdated": "2026-03-31T14:28:53.287Z"}, "containers": {"cna": {"title": "Trino: Iceberg REST catalog static and vended credentials are accessible via query JSON", "problemTypes": [{"descriptions": [{"cweId": "CWE-212", "lang": "en", "description": "CWE-212: Improper Removal of Sensitive Information Before Storage or Transfer", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-312", "lang": "en", "description": "CWE-312: Cleartext Storage of Sensitive Information", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/trinodb/trino/security/advisories/GHSA-x27p-5f68-m644", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/trinodb/trino/security/advisories/GHSA-x27p-5f68-m644"}, {"name": "https://github.com/trinodb/trino/releases/tag/480", "tags": ["x_refsource_MISC"], "url": "https://github.com/trinodb/trino/releases/tag/480"}], "affected": [{"vendor": "trinodb", "product": "trino", "versions": [{"version": ">= 439, < 480", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-31T14:14:47.982Z"}, "descriptions": [{"lang": "en", "value": "Trino is a distributed SQL query engine for big data analytics. From version 439 to before version 480, Iceberg connector REST catalog static credentials (access key) or vended credentials (temporary access key) are accessible to users that have write privilege on SQL level. This issue has been patched in version 480."}], "source": {"advisory": "GHSA-x27p-5f68-m644", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-31T14:28:47.033694Z", "id": "CVE-2026-34214", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-31T14:28:53.287Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-34214", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-31T14:28:47.033694Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-31T14:28:49.762Z"}}], "cna": {"title": "Trino: Iceberg REST catalog static and vended credentials are accessible via query JSON", "source": {"advisory": "GHSA-x27p-5f68-m644", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "trinodb", "product": "trino", "versions": [{"status": "affected", "version": ">= 439, < 480"}]}], "references": [{"url": "https://github.com/trinodb/trino/security/advisories/GHSA-x27p-5f68-m644", "name": "https://github.com/trinodb/trino/security/advisories/GHSA-x27p-5f68-m644", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/trinodb/trino/releases/tag/480", "name": "https://github.com/trinodb/trino/releases/tag/480", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Trino is a distributed SQL query engine for big data analytics. From version 439 to before version 480, Iceberg connector REST catalog static credentials (access key) or vended credentials (temporary access key) are accessible to users that have write privilege on SQL level. This issue has been patched in version 480."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-212", "description": "CWE-212: Improper Removal of Sensitive Information Before Storage or Transfer"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-312", "description": "CWE-312: Cleartext Storage of Sensitive Information"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-31T14:14:47.982Z"}}}, "cveMetadata": {"cveId": "CVE-2026-34214", "state": "PUBLISHED", "dateUpdated": "2026-03-31T14:28:53.287Z", "dateReserved": "2026-03-26T15:57:52.324Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-03-31T14:14:47.982Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:trino:trino:*:*:*:*:*:*:*:*", "matchCriteriaId": "03F5711B-7D03-4946-B983-27054B68A81A", "versionEndExcluding": "480", "versionStartIncluding": "439", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Trino is a distributed SQL query engine for big data analytics. From version 439 to before version 480, Iceberg connector REST catalog static credentials (access key) or vended credentials (temporary access key) are accessible to users that have write privilege on SQL level. This issue has been patched in version 480."}], "id": "CVE-2026-34214", "lastModified": "2026-04-06T16:53:34.467", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 4.0, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-03-31T15:16:18.400", "references": [{"source": "security-advisories@github.com", "tags": ["Release Notes"], "url": "https://github.com/trinodb/trino/releases/tag/480"}, {"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/trinodb/trino/security/advisories/GHSA-x27p-5f68-m644"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-212"}, {"lang": "en", "value": "CWE-312"}], "source": "security-advisories@github.com", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-312"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[439,480)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "trino", "source": "cna", "vendor": "trinodb"}, "product": "trino", "vendor": "trinodb"}], "analysis": {"en": {"generated_at": "2026-04-06T21:26:45.987276+00:00", "value": {"mitigation_remediation": ["Upgrade Trino to version 480 or later to receive the patch that removes the credential exposure.", "If upgrading immediately is not possible, limit SQL write privileges in the environment to trusted users only.", "Review and tighten Iceberg connector configuration to remove or encrypt stored credentials where feasible.", "Verify all privileged users and audit access controls to reduce the attack surface."], "summary": {"action": "Patch Immediately", "impact": "Credential Exposure via JSON response"}, "threat_synthesis": {"affected_systems": "Trino, the distributed SQL engine from Trinodb. The affected product is the Iceberg connector\u2019s REST catalog configuration. Versions starting from 439 up to but not including 480 are vulnerable. All deployments relying on these versions carry the risk. ", "description_and_impact": "This vulnerability allows users who have write privilege on SQL queries to read the REST catalog configuration of the Iceberg connector in Trino. The configuration contains either a static access key or a temporary, vended access key. An attacker who can submit a write query can therefore obtain the key through the JSON returned by the query. The stolen key can give the attacker unauthorized access to the underlying data lake or cloud storage, enabling data exfiltration or further compromise of the platform. The weakness is represented by CWE\u2011212 and CWE\u2011312. ", "risk_and_exploitability": "The CVSS score is 7.7, indicating a high potential impact. The EPSS score is below 1%, suggesting a low probability of exploitation in the wild today, and the vulnerability has not been identified in the CISA KEV catalog. The likely attack vector requires that the attacker can execute write\u2011level SQL queries within the Trino environment. If such privileges exist, credential disclosure is straightforward, making remediation a priority. "}}}}, "created": "2026-03-31T19:54:24.865707+00:00", "updated": "2026-04-07T08:08:05.381102+00:00", "vendors": ["trinodb", "trinodb$PRODUCT$trino"]}