CVE-2024-5037 Openshift/telemeter: iss check during jwt authentication can be bypassed

🗓️ 05 Jun 2024 18:03:23Reported by redhatType

Flaw in OpenShift Telemeter: bypassed "iss" check during JWT authentication

Reporter	Title	Published	Views	Family All 17
BDU FSTEC	The vulnerability of the software for collecting information about the status and performance of applications running on the OpenShift platform, specifically OpenShift Telemeter, relates to bypassing authentication through spoofing. This allows a malicious individual to gain unauthorized access to protected information.	13 Jun 202400:00	–	bdu_fstec
CNNVD	Red Hat OpenShift Telemeter Security Vulnerability	5 Jun 202400:00	–	cnnvd
CVE	CVE-2024-5037	5 Jun 202418:03	–	cve
EUVD	EUVD-2024-47148	3 Oct 202520:07	–	euvd
NVD	CVE-2024-5037	5 Jun 202418:15	–	nvd
OSV	CVE-2024-5037	5 Jun 202418:15	–	osv
OSV	GO-2024-2905 Openshift/telemeter: iss check during jwt authentication can be bypassed in github.com/openshift/telemeter	28 Jun 202415:28	–	osv
Positive Technologies	PT-2024-4052 · Red Hat · Openshift Telemeter	5 Jun 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-5037	5 Jun 202418:01	–	redhatcve
RedHat Linux	Important: Red Hat Security Advisory: OpenShift Container Platform 4.15.20 security update	2 Jul 202419:30	–	redhat

[
  {
    "versions": [
      {
        "status": "affected",
        "version": "4.16",
        "lessThan": "4.17",
        "versionType": "semver"
      }
    ],
    "packageName": "telemeter",
    "collectionURL": "https://github.com/openshift/telemeter",
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4.12",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift4/ose-telemeter",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v4.12.0-202408071159.p0.gc9592de.assembly.stream.el8",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:openshift:4.12::el8",
      "cpe:/a:redhat:openshift:4.12::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4.13",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift4/ose-telemeter",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v4.13.0-202407081338.p0.g0634a6d.assembly.stream.el8",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:openshift:4.13::el8",
      "cpe:/a:redhat:openshift:4.13::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4.14",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift4/ose-telemeter",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v4.14.0-202407021509.p0.g1f72681.assembly.stream.el8",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:openshift:4.14::el8",
      "cpe:/a:redhat:openshift:4.14::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4.15",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift4/ose-telemeter-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v4.15.0-202406200537.p0.g14489f7.assembly.stream.el9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:openshift:4.15::el8",
      "cpe:/a:redhat:openshift:4.15::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4.16",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift4/ose-telemeter-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v4.16.0-202406200537.p0.gc1ecd10.assembly.stream.el9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:openshift:4.16::el9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Logging Subsystem for Red Hat OpenShift",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "openshift-logging/opa-openshift-rhel8",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/a:redhat:logging:5"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift distributed tracing 2",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rhosdt/tempo-gateway-opa-rhel8",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift_distributed_tracing:2"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift distributed tracing 3",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rhosdt/tempo-gateway-opa-rhel8",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/a:redhat:openshift_distributed_tracing:3"
    ]
  }
]

Source	Link
access	www.access.redhat.com/errata/RHSA-2024:4484
access	www.access.redhat.com/errata/RHSA-2024:5200
access	www.access.redhat.com/errata/RHSA-2024:4156
access	www.access.redhat.com/security/cve/CVE-2024-5037
github	www.github.com/openshift/telemeter/blob/a9417a6062c3a31ed78c06ea3a0613a52f2029b2/pkg/authorize/jwt/client_authorizer.go
access	www.access.redhat.com/errata/RHSA-2024:4151
github	www.github.com/kubernetes/kubernetes/pull/123540
access	www.access.redhat.com/errata/RHSA-2024:4329
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

30 Apr 2026 10:00Current

7.5High risk

Vulners AI Score7.5

CVSS 3.17.5

EPSS0.00343

CWE-290