A vulnerability classified as critical was found in Kubernetes 1.5.0/1.5.1/1.5.2/1.5.3/1.5.4 (Virtualization Software). This vulnerability affects an unknown code of the component PodSecurityPolicy Admission Plugin. The manipulation as part of a PodSecurityPolicy Object leads to a access control vulnerability. The CWE definition for the vulnerability is CWE-264. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:

Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object.

The bug was discovered 03/21/2017. The weakness was presented 07/17/2017 (GitHub Repository). The advisory is available at github.com. This vulnerability was named CVE-2017-1000056 since 07/10/2017. The exploitation appears to be easy. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. The technical details are unknown and an exploit is not available. This vulnerability is assigned to T1068 by the MITRE ATT&CK project.

The vulnerability was handled as a non-public zero-day exploit for at least 118 days. During that time the estimated underground price was around $0-$5k.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

See VDB-182027, VDB-182028, VDB-183005 and VDB-183006 for similar entries.

Productinfo

Type

• Virtualization Software

Name

• Kubernetes

Version

• 1.5.0
• 1.5.1
• 1.5.2
• 1.5.3
• 1.5.4

License

• open-source

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion