Main Vulnerability Database Vulnerabilities #VU77526

#VU77526 Permissions, Privileges, and Access Controls in apiserver - CVE-2023-2728

Published: June 19, 2023 / Updated: September 6, 2024

Vulnerability identifier: #VU77526

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/U:Green

CVE-ID: CVE-2023-2728

CWE-ID: CWE-264

Exploitation vector: Remote access

Exploit availability: Public exploit is available

Vulnerable software:
apiserver

Software vendor:
Kubernetes

Description

The vulnerability allows a remote user to bypass implemented security restrictions.

The vulnerability exists due to improperly imposed security restrictions. A remote user can launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers.

Kubernetes clusters are only affected if the ServiceAccount admission plugin and the kubernetes.io/enforce-mountable-secrets annotation are used together with ephemeral containers.

Remediation

Install updates from vendor's website.

External links

https://groups.google.com/a/kubernetes.io/g/dev/c/_Xx3ZrNeZYg/m/cjBUC0IxAAAJ

#VU77526 Permissions, Privileges, and Access Controls in apiserver - CVE-2023-2728

Description

Remediation

External links

Please verify you're human