CVE-2023-1943 - OpenCVE

Privilege Escalation in kOps using GCE/GCP Provider in Gossip Mode.

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Kubernetes	Operations

Configuration 1 [-]

OR	cpe:2.3:a:kubernetes:operations::::::::
	cpe:2.3:a:kubernetes:operations::::::::

References

Link	Resource
https://github.com/kubernetes/kops/issues/15539	Issue Tracking
https://groups.google.com/g/kubernetes-security-announce/c/yrCE1x89oaU	Mailing List

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: kubernetes

Published: 2023-10-11T23:01:50.876Z

Updated: 2023-10-11T23:01:50.876Z

Reserved: 2023-04-07T20:38:48.430Z

Link: CVE-2023-1943

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-10-12T00:15:10.067

Modified: 2023-10-18T14:55:16.960

Link: CVE-2023-1943

JSON object: View

Redhat Information

No data.

CWE

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-1943", "assignerOrgId": "a6081bf6-c852-4425-ad4f-a67919267565", "state": "PUBLISHED", "assignerShortName": "kubernetes", "dateReserved": "2023-04-07T20:38:48.430Z", "datePublished": "2023-10-11T23:01:50.876Z", "dateUpdated": "2023-10-11T23:01:50.876Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "a6081bf6-c852-4425-ad4f-a67919267565", "shortName": "kubernetes", "dateUpdated": "2023-10-11T23:01:50.876Z"}, "title": "Privilege Escalation in kOps using GCE/GCP Provider in Gossip Mode", "datePublic": "2023-06-21T18:00:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-250", "description": "CWE-250: Execution with Unnecessary Privileges", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233 Privilege Escalation"}]}], "affected": [{"vendor": "Kubernetes", "product": "kops", "repo": "https://github.com/kubernetes/kops", "versions": [{"status": "affected", "version": "0", "lessThan": "1.25.3", "versionType": "semver"}, {"status": "unaffected", "version": "1.25.3"}, {"status": "affected", "version": "1.26.0", "lessThan": "1.26.2", "versionType": "semver"}, {"status": "unaffected", "version": "1.26.2"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "Privilege Escalation in kOps using GCE/GCP Provider in Gossip Mode.\n", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Privilege Escalation in kOps using GCE/GCP Provider in Gossip Mode.<br>"}]}], "references": [{"url": "https://github.com/kubernetes/kops/issues/15539", "tags": ["issue-tracking"]}, {"url": "https://groups.google.com/g/kubernetes-security-announce/c/yrCE1x89oaU", "tags": ["mailing-list"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "ADJACENT_NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "HIGH", "baseScore": 8, "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}}], "credits": [{"lang": "en", "value": "James Cleverley-Prance", "user": "00000000-0000-4000-9000-000000000000", "type": "reporter"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:kubernetes:operations:*:*:*:*:*:*:*:*", "matchCriteriaId": "5488C983-38DD-4787-9956-C68D528D5ED1", "versionEndExcluding": "1.25.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:kubernetes:operations:*:*:*:*:*:*:*:*", "matchCriteriaId": "763C648A-9C2F-4697-AC4A-5897EDA1966E", "versionEndExcluding": "1.26.2", "versionStartIncluding": "1.26.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Privilege Escalation in kOps using GCE/GCP Provider in Gossip Mode.\n"}, {"lang": "es", "value": "Escalada de privilegios en kOps utilizando el proveedor GCE/GCP en modo Gossip."}], "id": "CVE-2023-1943", "lastModified": "2023-10-18T14:55:16.960", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.1, "impactScore": 5.9, "source": "jordan@liggitt.net", "type": "Secondary"}]}, "published": "2023-10-12T00:15:10.067", "references": [{"source": "jordan@liggitt.net", "tags": ["Issue Tracking"], "url": "https://github.com/kubernetes/kops/issues/15539"}, {"source": "jordan@liggitt.net", "tags": ["Mailing List"], "url": "https://groups.google.com/g/kubernetes-security-announce/c/yrCE1x89oaU"}], "sourceIdentifier": "jordan@liggitt.net", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-250"}], "source": "jordan@liggitt.net", "type": "Secondary"}]}