Lucene search
PRIOn knowledge basePRION:CVE-2023-48312HistoryNov 24, 2023 - 6:15 p.m.
Privilege escalation
2023-11-2418:15:00
PRIOn knowledge base
www.prio-n.com
2
privilege escalation
capsule-proxy
reverse proxy
capsule operator project
bypassing token review
kubernetes api server
client certificates
upgrade
version 0.4.6
capsule-proxy is a reverse proxy for the capsule operator project. Affected versions are subject to a privilege escalation vulnerability which is based on a missing check if the user is authenticated based on the TokenReview result. All the clusters running with the anonymous-auth Kubernetes API Server setting disable (set to false) are affected since it would be possible to bypass the token review mechanism, interacting with the upper Kubernetes API Server. This privilege escalation cannot be exploited if you’re relying only on client certificates (SSL/TLS). This vulnerability has been addressed in version 0.4.6. Users are advised to upgrade.
| CPE | Name | Operator | Version |
|---|---|---|---|
| capsule-proxy | le | 0.4.5 |
Related
cvelist
cvelist
CVE-2023-48312 Authentication bypass using an empty token in capsule-proxy
2023-11-24 17:12:39
nvd
nvd
CVE-2023-48312
2023-11-24 18:15:07
veracode
veracode
Improper Authentication
2023-11-27 07:18:19
osv
osv
Capsule Proxy Authentication bypass using an empty token
2023-11-24 16:53:25
CVE-2023-48312
2023-11-24 18:15:07
cve
cve
CVE-2023-48312
2023-11-24 18:15:07
github
github
Capsule Proxy Authentication bypass using an empty token
2023-11-24 16:53:25