gsd - gsd-2023-3676

gsd-2023-3676

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes.

Aliases

CVE-2023-3676

Aliases

CVE-2023-3676

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-3676",
    "id": "GSD-2023-3676"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-3676"
      ],
      "details": "A security issue was discovered in Kubernetes where a user\n that can create pods on Windows nodes may be able to escalate to admin \nprivileges on those nodes. Kubernetes clusters are only affected if they\n include Windows nodes.\n",
      "id": "GSD-2023-3676",
      "modified": "2023-12-13T01:20:54.756190Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@kubernetes.io",
        "ID": "CVE-2023-3676",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "kubelet",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "unaffected",
                            "versions": [
                              {
                                "status": "affected",
                                "version": "v1.28.0"
                              },
                              {
                                "lessThanOrEqual": "v1.27.4",
                                "status": "affected",
                                "version": "v1.27.0",
                                "versionType": "semver"
                              },
                              {
                                "lessThanOrEqual": "v1.26.7",
                                "status": "affected",
                                "version": "v1.26.0",
                                "versionType": "semver"
                              },
                              {
                                "lessThanOrEqual": "v1.25.12",
                                "status": "affected",
                                "version": "v1.25.0",
                                "versionType": "semver"
                              },
                              {
                                "status": "unaffected",
                                "version": "v1.28.1"
                              },
                              {
                                "status": "unaffected",
                                "version": "v1.27.5"
                              },
                              {
                                "status": "unaffected",
                                "version": "v1.26.8"
                              },
                              {
                                "status": "unaffected",
                                "version": "v1.25.13"
                              },
                              {
                                "status": "unaffected",
                                "version": "v1.24.17"
                              },
                              {
                                "lessThanOrEqual": "v1.24.16",
                                "status": "affected",
                                "version": "0",
                                "versionType": "semver"
                              }
                            ]
                          }
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Kubernetes"
            }
          ]
        }
      },
      "credits": [
        {
          "lang": "en",
          "value": "Tomer Peled"
        }
      ],
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A security issue was discovered in Kubernetes where a user\n that can create pods on Windows nodes may be able to escalate to admin \nprivileges on those nodes. Kubernetes clusters are only affected if they\n include Windows nodes.\n"
          }
        ]
      },
      "generator": {
        "engine": "Vulnogram 0.1.0-dev"
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-20",
                "lang": "eng",
                "value": "CWE-20 Improper Input Validation"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/kubernetes/kubernetes/issues/119339",
            "refsource": "MISC",
            "url": "https://github.com/kubernetes/kubernetes/issues/119339"
          },
          {
            "name": "https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zc",
            "refsource": "MISC",
            "url": "https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zc"
          },
          {
            "name": "https://security.netapp.com/advisory/ntap-20231130-0007/",
            "refsource": "MISC",
            "url": "https://security.netapp.com/advisory/ntap-20231130-0007/"
          }
        ]
      },
      "source": {
        "discovery": "EXTERNAL"
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "1.24.17",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "1.25.13",
                    "versionStartIncluding": "1.25.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "1.26.8",
                    "versionStartIncluding": "1.26.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "1.27.5",
                    "versionStartIncluding": "1.27.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "1.28.1",
                    "versionStartIncluding": "1.28.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@kubernetes.io",
          "ID": "CVE-2023-3676"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A security issue was discovered in Kubernetes where a user\n that can create pods on Windows nodes may be able to escalate to admin \nprivileges on those nodes. Kubernetes clusters are only affected if they\n include Windows nodes.\n"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zc",
              "refsource": "MISC",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zc"
            },
            {
              "name": "https://github.com/kubernetes/kubernetes/issues/119339",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Mitigation",
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://github.com/kubernetes/kubernetes/issues/119339"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20231130-0007/",
              "refsource": "",
              "tags": [],
              "url": "https://security.netapp.com/advisory/ntap-20231130-0007/"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2023-11-30T22:15Z",
      "publishedDate": "2023-10-31T21:15Z"
    }
  }
}

cve-2023-3676

Vulnerability from cvelistv5

Published

2023-10-31 20:22

Modified

2024-08-02 07:01

Severity ?

8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

Kubernetes - Windows nodes - Insufficient input sanitization leads to privilege escalation

References

▼	URL	Tags
	https://github.com/kubernetes/kubernetes/issues/119339	issue-tracking
	https://groups.google.com/g/kubernetes-security-announce/c/d_fvHZ9a5zc	mailing-list
	https://security.netapp.com/advisory/ntap-20231130-0007/

Impacted products

▼	Vendor	Product
	Kubernetes	kubelet

Show details on NVD website