CVE-2020-8555

LOW

Description

The Kubernetes kube-controller-manager in versions v1.0-1.14, versions prior to v1.15.12, v1.16.9, v1.17.5, and version v1.18.0 are vulnerable to a Server Side Request Forgery (SSRF) that allows certain authorized users to leak up to 500 bytes of arbitrary information from unprotected endpoints within the master's host network (such as link-local or loopback services).

References

https://groups.google.com/d/topic/kubernetes-security-announce/kEK27tqqs30/discussion

https://github.com/kubernetes/kubernetes/issues/91542

http://www.openwall.com/lists/oss-security/2020/06/01/4

https://lists.fedoraproject.org/archives/list/[email protected]/message/3SOCLOPTSYABTE4CLTSPDIFE6ZZZR4LX/

https://security.netapp.com/advisory/ntap-20200724-0005/

http://www.openwall.com/lists/oss-security/2021/05/04/8

Details

Source: MITRE

Published: 2020-06-05

Updated: 2021-05-04

Type: CWE-918

Risk Information

CVSS v2.0

Base Score: 3.5

Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 6.8

Severity: LOW

CVSS v3.0

Base Score: 6.3

Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Impact Score: 4

Exploitability Score: 1.8

Severity: MEDIUM

Tenable Plugins

View all (7 total)

IDNameProductFamilySeverity
140715Photon OS 2.0: Kubernetes PHSA-2020-2.0-0285NessusPhotonOS Local Security Checks
medium
140706Photon OS 3.0: Kubernetes PHSA-2020-3.0-0142NessusPhotonOS Local Security Checks
medium
138918Fedora 32 : origin (2020-aeea04cd13)NessusFedora Local Security Checks
medium
138026RHEL 7 / 8 : OpenShift Container Platform 4.2.36 openshift (RHSA-2020:2594)NessusRed Hat Local Security Checks
low
137727RHEL 7 / 8 : OpenShift Container Platform 4.4.8 openshift (RHSA-2020:2448)NessusRed Hat Local Security Checks
low
137668RHEL 7 : OpenShift Container Platform 3.11 atomic-openshift (RHSA-2020:2479)NessusRed Hat Local Security Checks
medium
137562RHEL 7 / 8 : OpenShift Container Platform 4.3.25 openshift (RHSA-2020:2440)NessusRed Hat Local Security Checks
low