Authentication Bypass

github.com/edgelesssys/marblerun is vulnerable to Authentication Bypass. The vulnerability is due to the lack of verification that the recovery key was provided by an authorized party, combined with the failure to compare the Coordinator's root certificate against a trusted reference when...

GO-2025-3450 MarbleRun unauthenticated recovery allows Coordinator impersonation in github.com/edgelesssys/marblerun

MarbleRun unauthenticated recovery allows Coordinator impersonation in github.com/edgelesssys/marblerun...

MarbleRun unauthenticated recovery allows Coordinator impersonation

Impact During recovery, a Coordinator only verifies that a given recovery key decrypts the sealed state, not if this key was provided by a party with access to one of the recovery keys defined in the manifest. This allows an attacker to manually craft a sealed state using their own recovery keys,...

GO-2023-2378 Go package github.com/edgelesssys/marblerun CLI commands susceptible to MITM attacks

Go package github.com/edgelesssys/marblerun CLI commands susceptible to MITM attacks...

GO-2024-2583 Encryption bypass in github.com/edgelesssys/marblerun

Encryption bypass in github.com/edgelesssys/marblerun...

GHSA-X5R5-2QRX-RQJ8 Transparent TLS may not be applied to Marbles with certain manifest configurations

Transparent TLS TTLS is a MarbleRun feature that wraps plain TCP connections between Marbles in TLS. In the manifest, a user defines the connections that should be considered. Impact If a Marble is configured for TTLS, but doesn't have an environment variable defined in its parameters, TTLS is no...

GHSA-J3RQ-4XJW-XG63 Go package github.com/edgelesssys/marblerun CLI commands susceptible to MITM attacks

Impact Any CLI command issued to a Coordinator after the Manifest has been set, is susceptible to be redirected to another MarbleRun Coordinator instance, which runs the same binary, but potentially a different manifest. Patches The issue has been patched in v1.4.0 Workarounds Directly using the...