CVE-2023-3027

2023-06-0522:15:12

CWE-269

[email protected]

web.nvd.nist.gov

grc-policy-propagator

security escalation

cluster

policies

dynamically obtained values

namespace

nvd

cve-2023-3027

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

The grc-policy-propagator allows security escalation within the cluster. The propagator allows policies which contain some dynamically obtained values (instead of the policy apply a static manifest on a managed cluster) of taking advantage of cluster scoped access in a created policy. This feature does not restrict properly to lookup content from the namespace where the policy was created.

Affected configurations

Vulners

NVD

Node

rhacmRange≤2.5

rhacmRange≤2.6

rhacmRange≤2.7

CPENameOperatorVersion
redhat:advanced_cluster_management_for_kubernetesredhat advanced cluster management for kuberneteseq2.5
redhat:advanced_cluster_management_for_kubernetesredhat advanced cluster management for kuberneteseq2.6
redhat:advanced_cluster_management_for_kubernetesredhat advanced cluster management for kuberneteseq2.7

CPE	Name	Operator	Version
redhat:advanced_cluster_management_for_kubernetes	redhat advanced cluster management for kubernetes	eq	2.5
redhat:advanced_cluster_management_for_kubernetes	redhat advanced cluster management for kubernetes	eq	2.6
redhat:advanced_cluster_management_for_kubernetes	redhat advanced cluster management for kubernetes	eq	2.7

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "RHACM",
    "versions": [
      {
        "version": "2.5, 2.6, 2.7",
        "status": "affected"
      }
    ]
  }
]