The SentinelOne Annual Threat Report - A Defenders Guide from the FrontlinesThe SentinelOne Annual Threat ReportGet the Report
Experiencing a Breach?Blog
Get StartedContact Us
SentinelOne
  • Platform
    Platform Overview
    • Singularity Platform
      Welcome to Integrated Enterprise Security
    • AI for Security
      Leading the Way in AI-Powered Security Solutions
    • Securing AI
      Accelerate AI Adoption with Secure AI Tools, Apps, and Agents.
    • How It Works
      The Singularity XDR Difference
    • Singularity Marketplace
      One-Click Integrations to Unlock the Power of XDR
    • Pricing & Packaging
      Comparisons and Guidance at a Glance
    Data & AI
    • Purple AI
      Accelerate SecOps with Generative AI
    • Singularity Hyperautomation
      Easily Automate Security Processes
    • AI-SIEM
      The AI SIEM for the Autonomous SOC
    • Singularity Data Lake
      AI-Powered, Unified Data Lake
    • Singularity Data Lake for Log Analytics
      Seamlessly Ingest Data from On-Prem, Cloud or Hybrid Environments
    Endpoint Security
    • Singularity Endpoint
      Autonomous Prevention, Detection, and Response
    • Singularity XDR
      Native & Open Protection, Detection, and Response
    • Singularity RemoteOps Forensics
      Orchestrate Forensics at Scale
    • Singularity Threat Intelligence
      Comprehensive Adversary Intelligence
    • Singularity Vulnerability Management
      Application & OS Vulnerability Management
    • Singularity Identity
      Identity Threat Detection and Response
    Cloud Security
    • Singularity Cloud Security
      Block Attacks with an AI-Powered CNAPP
    • Singularity Cloud Native Security
      Secure Cloud and Development Resources
    • Singularity Cloud Workload Security
      Real-Time Cloud Workload Protection Platform
    • Singularity Cloud Data Security
      AI-Powered Threat Detection for Cloud Storage
    • Singularity Cloud Security Posture Management
      Detect and Remediate Cloud Misconfigurations
    Securing AI
    • Prompt Security
      Secure AI Tools Across Your Enterprise
  • Why SentinelOne?
    Why SentinelOne?
    • Why SentinelOne?
      Cybersecurity Built for What’s Next
    • Our Customers
      Trusted by the World’s Leading Enterprises
    • Industry Recognition
      Tested and Proven by the Experts
    • About Us
      The Industry Leader in Autonomous Cybersecurity
    Compare SentinelOne
    • Arctic Wolf
    • Broadcom
    • CrowdStrike
    • Cybereason
    • Microsoft
    • Palo Alto Networks
    • Sophos
    • Splunk
    • Trellix
    • Trend Micro
    • Wiz
    Verticals
    • Energy
    • Federal Government
    • Finance
    • Healthcare
    • Higher Education
    • K-12 Education
    • Manufacturing
    • Retail
    • State and Local Government
  • Services
    Managed Services
    • Managed Services Overview
      Wayfinder Threat Detection & Response
    • Threat Hunting
      World-Class Expertise and Threat Intelligence
    • Managed Detection & Response
      24/7/365 Expert MDR Across Your Entire Environment
    • Incident Readiness & Response
      DFIR, Breach Readiness, & Compromise Assessments
    Support, Deployment, & Health
    • Technical Account Management
      Customer Success with Personalized Service
    • SentinelOne GO
      Guided Onboarding & Deployment Advisory
    • SentinelOne University
      Live and On-Demand Training
    • Services Overview
      Comprehensive Solutions for Seamless Security Operations
    • SentinelOne Community
      Community Login
  • Partners
    Our Network
    • MSSP Partners
      Succeed Faster with SentinelOne
    • Singularity Marketplace
      Extend the Power of S1 Technology
    • Cyber Risk Partners
      Enlist Pro Response and Advisory Teams
    • Technology Alliances
      Integrated, Enterprise-Scale Solutions
    • SentinelOne for AWS
      Hosted in AWS Regions Around the World
    • Channel Partners
      Deliver the Right Solutions, Together
    • SentinelOne for Google Cloud
      Unified, Autonomous Security Giving Defenders the Advantage at Global Scale
    • Partner Locator
      Your Go-to Source for Our Top Partners in Your Region
    Partner Portal→
  • Resources
    Resource Center
    • Case Studies
    • Data Sheets
    • eBooks
    • Reports
    • Videos
    • Webinars
    • Whitepapers
    • Events
    View All Resources→
    Blog
    • Feature Spotlight
    • For CISO/CIO
    • From the Front Lines
    • Identity
    • Cloud
    • macOS
    • SentinelOne Blog
    Blog→
    Tech Resources
    • SentinelLABS
    • Ransomware Anthology
    • Cybersecurity 101
  • About
    About SentinelOne
    • About SentinelOne
      The Industry Leader in Cybersecurity
    • Investor Relations
      Financial Information & Events
    • SentinelLABS
      Threat Research for the Modern Threat Hunter
    • Careers
      The Latest Job Opportunities
    • Press & News
      Company Announcements
    • Cybersecurity Blog
      The Latest Cybersecurity Threats, News, & More
    • FAQ
      Get Answers to Our Most Frequently Asked Questions
    • DataSet
      The Live Data Platform
    • S Foundation
      Securing a Safer Future for All
    • S Ventures
      Investing in the Next Generation of Security, Data and AI
  • Pricing
Get StartedContact Us
CVE Vulnerability Database
Vulnerability Database/CVE-2021-36749

CVE-2021-36749: Apache Druid Auth Bypass Vulnerability

CVE-2021-36749 is an authentication bypass flaw in Apache Druid that allows users to access local file system data via HTTP InputSource. This article covers technical details, affected versions, impact, and mitigation.

Published: February 25, 2026

CVE-2021-36749 Overview

CVE-2021-36749 is an authorization bypass vulnerability in Apache Druid's ingestion system that allows authenticated users to read arbitrary files from the local file system. The HTTP InputSource component, designed for reading data from external HTTP sources, can be abused by passing file:// URLs instead of legitimate HTTP URLs. This enables attackers to access sensitive files with the privileges of the Druid server process, potentially exposing configuration files, credentials, and other sensitive data stored on the server.

Critical Impact

Authenticated attackers can bypass application-level access controls to read arbitrary files from the Druid server's local file system, potentially exposing sensitive configuration data, credentials, and other confidential information.

Affected Products

  • Apache Druid versions prior to 0.22.0
  • Apache Druid 0.21.0 (incomplete fix from CVE-2021-26920)
  • Apache Druid 0.21.1 (incomplete fix from CVE-2021-26920)

Discovery Timeline

  • 2021-09-24 - CVE-2021-36749 published to NVD
  • 2024-11-21 - Last updated in NVD database

Technical Details for CVE-2021-36749

Vulnerability Analysis

This vulnerability represents an incomplete fix for the previously disclosed CVE-2021-26920. Apache Druid's ingestion system uses various InputSource implementations to read data during the ingestion process. While the Local InputSource provides direct file system access (a legitimate feature for users with direct Druid access), the HTTP InputSource was intended exclusively for fetching data from remote HTTP/HTTPS endpoints.

The vulnerability exists because the HTTP InputSource fails to properly validate and restrict the URL schemes it accepts. When an authenticated user submits an ingestion task with a file:// URL scheme to the HTTP InputSource, the system processes it as a valid request and reads the specified local file. This becomes particularly problematic in deployment architectures where applications act as intermediaries between users and Druid, intentionally restricting access to the Local InputSource while permitting the HTTP InputSource.

Root Cause

The root cause is improper authorization (CWE-863) in the HTTP InputSource component. The vulnerability stems from insufficient URL scheme validation that allows the file:// protocol to be processed when only http:// and https:// schemes should be accepted. This creates a security boundary bypass where application-level restrictions on local file access can be circumvented by using the HTTP InputSource as an indirect access mechanism.

Attack Vector

The attack requires network access and authentication to the Druid cluster. An attacker must be able to submit ingestion tasks, either directly to Druid or through an intermediary application that exposes the HTTP InputSource functionality. The attack is executed by crafting an ingestion specification that uses the HTTP InputSource with a file:// URL pointing to a target file on the server's file system.

The exploitation flow involves an authenticated user submitting a data ingestion request that specifies the HTTP InputSource type but provides a local file path using the file:// URL scheme. The Druid server processes this request without proper scheme validation, reads the local file with server process privileges, and returns the contents to the attacker. This allows reading of any file accessible to the Druid process, including configuration files that may contain database credentials, API keys, or other sensitive information.

Detection Methods for CVE-2021-36749

Indicators of Compromise

  • Ingestion task submissions containing file:// URL schemes in HTTP InputSource configurations
  • Unusual file access patterns from the Druid server process to sensitive system files
  • Ingestion requests targeting common sensitive files such as /etc/passwd, /etc/shadow, or application configuration files
  • Repeated failed or successful attempts to access files outside normal data directories

Detection Strategies

  • Monitor Druid ingestion task logs for HTTP InputSource requests containing non-HTTP URL schemes
  • Implement network-level inspection for ingestion API calls with suspicious URL patterns
  • Configure file integrity monitoring on sensitive system files to detect unauthorized read access
  • Review Druid audit logs for unusual ingestion task patterns from specific users

Monitoring Recommendations

  • Enable comprehensive logging for all ingestion task submissions including full InputSource configurations
  • Implement alerting on any ingestion request containing file://, ftp://, or other non-HTTP URL schemes
  • Monitor process file access using system auditing tools like auditd to track Druid process file reads
  • Establish baseline ingestion patterns and alert on anomalous activity

How to Mitigate CVE-2021-36749

Immediate Actions Required

  • Upgrade Apache Druid to version 0.22.0 or later which contains the complete fix for this vulnerability
  • Review and restrict which users have permission to submit ingestion tasks
  • Implement network segmentation to limit which systems can communicate with Druid ingestion endpoints
  • Audit recent ingestion tasks for evidence of exploitation attempts

Patch Information

Apache has addressed this vulnerability in Druid version 0.22.0. This release includes proper URL scheme validation in the HTTP InputSource to reject non-HTTP/HTTPS protocols. Organizations should note that versions 0.21.0 and 0.21.1 do not contain a complete fix despite earlier claims in CVE-2021-26920. For detailed patch information, refer to the Apache Druid Dev Thread and Apache Announcements Thread.

Workarounds

  • Implement a reverse proxy or API gateway in front of Druid that inspects and blocks ingestion requests containing file:// URLs
  • Restrict ingestion task submission to trusted administrative users only using Druid's authentication and authorization features
  • Run the Druid server process with minimal file system permissions using principle of least privilege
  • Deploy application-level input validation to reject ingestion specifications with non-HTTP URL schemes before they reach Druid
bash
# Example: Configure Druid with restricted process permissions
# Create dedicated druid user with minimal privileges
useradd -r -s /bin/false druid

# Restrict druid process to specific directories
chown -R druid:druid /opt/druid/var
chmod 700 /opt/druid/var

# Run Druid with the restricted user
sudo -u druid /opt/druid/bin/start-micro-quickstart

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

  • Vulnerability Details
  • TypeAuth Bypass
  • Vendor/TechApache Druid
  • SeverityMEDIUM
  • CVSS Score6.5
  • EPSS Probability93.84%
  • Known ExploitedNo
  • CVSS Vector
  • CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  • Impact Assessment
  • ConfidentialityLow
  • IntegrityNone
  • AvailabilityNone
  • CWE References
  • CWE-863
  • Technical References
  • Apache Announcements Thread
  • Vendor Resources
  • Apache Druid Dev Thread
  • Related CVEs
  • CVE-2026-23906: Apache Druid Auth Bypass Vulnerability
  • CVE-2025-59390: Apache Druid Auth Bypass Vulnerability
  • CVE-2021-26919: Apache Druid JDBC RCE Vulnerability
Default Legacy - Prefooter | Experience the World’s Most Advanced Cybersecurity Platform

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform can protect your organization now and into the future.

Try SentinelOne
  • Get Started
  • Get a Demo
  • Product Tour
  • Why SentinelOne
  • Pricing & Packaging
  • FAQ
  • Contact
  • Contact Us
  • Customer Support
  • SentinelOne Status
  • Language
  • Platform
  • Singularity Platform
  • Singularity Endpoint
  • Singularity Cloud
  • Singularity AI-SIEM
  • Singularity Identity
  • Singularity Marketplace
  • Purple AI
  • Services
  • Wayfinder TDR
  • SentinelOne GO
  • Technical Account Management
  • Support Services
  • Verticals
  • Energy
  • Federal Government
  • Finance
  • Healthcare
  • Higher Education
  • K-12 Education
  • Manufacturing
  • Retail
  • State and Local Government
  • Cybersecurity for SMB
  • Resources
  • Blog
  • Labs
  • Case Studies
  • Videos
  • Product Tours
  • Events
  • Cybersecurity 101
  • eBooks
  • Webinars
  • Whitepapers
  • Press
  • News
  • Ransomware Anthology
  • Company
  • About Us
  • Our Customers
  • Careers
  • Partners
  • Legal & Compliance
  • Security & Compliance
  • Investor Relations
  • S Foundation
  • S Ventures

©2026 SentinelOne, All Rights Reserved.

Privacy Notice Terms of Use

English