Improper Authentication in Kubernetes - CVE-2021-3636
Published: September 1, 2021
Vulnerability identifier: #VU56243
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2021-3636
CWE-ID: CWE-287
Exploitation vector: Adjecent network
Exploit availability:
No public exploit available
Vulnerable software:
Kubernetes
Kubernetes
Software vendor:
Kubernetes
Kubernetes
Description
The vulnerability allows a remote attacker to bypass authentication process.
The vulnerability exists due to the generated certificate for the in-cluster Service CA, incorrectly
included additional certificates. The Service CA is automatically
mounted into all pods, allowing them to safely connect to trusted
in-cluster services that present certificates signed by the trusted
Service CA. The incorrect inclusion of additional CAs in this
certificate would allow an attacker that compromises any of the
additional CAs to masquerade as a trusted in-cluster service.
Remediation
Install updates from vendor's website.