SCA: security update for github.com/kedacore/keda/v2 (GHSA-c4p6-qg4m-9jmr)

high Tenable Self-Hosted Container Security Plugin ID 436477

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- KEDA is a Kubernetes-based Event Driven Autoscaling component. Prior to versions 2.17.3 and 2.18.3, an
Arbitrary File Read vulnerability has been identified in KEDA, potentially affecting any KEDA resource
that uses TriggerAuthentication to configure HashiCorp Vault authentication. The vulnerability stems from
an incorrect or insufficient path validation when loading the Service Account Token specified in
spec.hashiCorpVault.credential.serviceAccount. An attacker with permissions to create or modify a
TriggerAuthentication resource can exfiltrate the content of any file from the node's filesystem (where
the KEDA pod resides) by directing the file's content to a server under their control, as part of the
Vault authentication request. The potential impact includes the exfiltration of sensitive system
information, such as secrets, keys, or the content of files like /etc/passwd. This issue has been patched
in versions 2.17.3 and 2.18.3. (CVE-2025-68476)

See Also

https://github.com/advisories/GHSA-c4p6-qg4m-9jmr

Plugin Details

Severity: High

ID: 436477

Version: Revision 1.7

Type: Local

Family: SCA Checks

Published: 12/23/2025

Updated: 7/2/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 3

Percentile: 23.73

Vendor

Vendor Severity: High

CVSS v2

Risk Factor: Medium

Base Score: 4

Temporal Score: 3

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS Score Source: CVE-2025-68476

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

CVSS v4

Risk Factor: High

Base Score: 8.2

Threat Score: 5.6

Threat Vector: CVSS:4.0/E:U

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 12/22/2025

Vulnerability Publication Date: 12/22/2025

Reference Information

CVE: CVE-2025-68476