CVE-2024-3154

Cri-o: arbitrary command injection via pod annotation

CVSS 7.2 HIGHEPSS 1.4%CWE-77

Vexday Risk Score

21Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS 7.2EPSS 1.4%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado

Ciclo de vida

26 abr 2024Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perform an arbitrary action on the host system.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Produtos afetados

cri-oRed Hat · Red Hat OpenShift Container Platform 3.11 Red Hat · Red Hat OpenShift Container Platform 4.12 Red Hat · Red Hat OpenShift Container Platform 4.13 Red Hat · Red Hat OpenShift Container Platform 4.14 Red Hat · Red Hat OpenShift Container Platform 4.15

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://access.redhat.com/errata/RHSA-2024:2669 https://access.redhat.com/errata/RHSA-2024:2672 https://access.redhat.com/errata/RHSA-2024:2784 https://access.redhat.com/errata/RHSA-2024:3496 https://access.redhat.com/security/cve/CVE-2024-3154 https://bugzilla.redhat.com/show_bug.cgi?id=2272532 https://github.com/cri-o/cri-o/security/advisories/GHSA-2cgq-h8xw-2v5j https://github.com/opencontainers/runc/pull/4217 https://github.com/opencontainers/runtime-spec/blob/main/features.md#unsafe-annotations-in-configjson