Veracode Vulnerability DatabaseVERACODE:43412Missing Authentication For Critical Function
8.1 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
0.0004 Low
EPSS
Percentile
5.2%
github.com/cilium/cilium is vulnerable to Missing Authentication. The vulnerability is due to the ValidateCNP function in validator.go which lacks checks for a policy with any malicious or incorrectly match configurations, allowing an attacker to create policies that bypass namespace restrictions and affect the entire Cilium cluster when using a crafted endpointSelector that uses the DoesNotExist operator on the reserved:init label.
References
docs.cilium.io/en/stable/security/threat-model/#kubernetes-api-server-attacker
github.com/cilium/cilium/commit/4c2fda41aec513a294738556d2b58e43ff52291d
github.com/cilium/cilium/commit/611f75b81e64c54fd8d8069cae2a3effc21082c3
github.com/cilium/cilium/commit/afa292ecf278ec561b432f1aac2d2211fddf2274
github.com/cilium/cilium/pull/28007
github.com/cilium/cilium/security/advisories/GHSA-4xp2-w642-7mcx
Related
8.1 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
0.0004 Low
EPSS
Percentile
5.2%