Lucene search

GitHub Advisory DatabaseGHSA-2JQ6-FFPH-P4H8

HistoryMay 13, 2022 - 1:35 a.m.

Kubernetes arbitrary file overwrite

2022-05-1301:35:04

CWE-20

GitHub Advisory Database

github.com

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

0.0005 Low

EPSS

Percentile

17.3%

JSON

In Kubernetes versions 1.5.x, 1.6.x, 1.7.x, 1.8.x, and prior to version 1.9.6, the kubectl cp command insecurely handles tar data returned from the container, and can be caused to overwrite arbitrary local files.

Affected configurations

Vulners

Node

k8s.iokubernetesRange<1.9.6

CPENameOperatorVersion
k8s.io/kuberneteslt1.9.6

CPE	Name	Operator	Version
	k8s.io/kubernetes	lt	1.9.6

References

bugzilla.redhat.com/show_bug.cgi?id=1564305

github.com/advisories/GHSA-2jq6-ffph-p4h8

github.com/kubernetes/kubernetes/issues/61297

hansmi.ch/articles/2018-04-openshift-s2i-security

nvd.nist.gov/vuln/detail/CVE-2018-1002100

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

0.0005 Low

EPSS

Percentile

17.3%

JSON

Related for GHSA-2JQ6-FFPH-P4H8