CVE-2023-38495

Опубликовано: 27 июл. 2023

Источник: nvd

CVSS3: 8.3

CVSS3: 9.8

EPSS Низкий

Описание

Crossplane is a framework for building cloud native control planes without needing to write code. In versions prior to 1.11.5, 1.12.3, and 1.13.0, Crossplane's image backend does not validate the byte contents of Crossplane packages. As such, Crossplane does not detect if an attacker has tampered with a Package. The problem has been fixed in 1.11.5, 1.12.3 and 1.13.0. As a workaround, only use images from trusted sources and keep Package editing/creating privileges to administrators only.

Ссылки

https://github.com/crossplane/crossplane/blob/ac8b24fe739c5d942ea885157148497f196c3dd3/security/ADA-security-audit-23.pdf
Exploit
Technical Description
Vendor Advisory
https://github.com/crossplane/crossplane/security/advisories/GHSA-pj4x-2xr5-w87m
Vendor Advisory
https://github.com/crossplane/crossplane/blob/ac8b24fe739c5d942ea885157148497f196c3dd3/security/ADA-security-audit-23.pdf
Exploit
Technical Description
Vendor Advisory
https://github.com/crossplane/crossplane/security/advisories/GHSA-pj4x-2xr5-w87m
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:cncf:crossplane:*:*:*:*:*:*:*:*

Версия до 1.11.5 (исключая)

cpe:2.3:a:cncf:crossplane:*:*:*:*:*:*:*:*

Версия от 1.12.0 (включая) до 1.12.3 (исключая)

EPSS

Процентиль: 47%

0.00242

Низкий

8.3 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-20

Связанные уязвимости

GHSA-pj4x-2xr5-w87m

CVSS3: 8.3

github

больше 2 лет назад

Possible image tampering from missing image validation for Packages

EPSS

Процентиль: 47%

0.00242

Низкий

8.3 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-20