Lucene search

RedhatVULNRICHMENT:CVE-2024-4369

HistoryApr 30, 2024 - 11:49 p.m.

CVE-2024-4369 Cluster-image-registry-operator: exposes a secret via env variable in pod definition on azure

2024-04-3023:49:02

CWE-526

redhat

github.com

cve-2024-4369

cluster-image-registry-operator

information disclosure

openshift

azure

environment variable

pod definition

azure client secret

registry operator

azure service account

CVSS3

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

AI Score

6.5

Confidence

Low

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

An information disclosure flaw was found in OpenShift’s internal image registry operator. The AZURE_CLIENT_SECRET can be exposed through an environment variable defined in the pod definition, but is limited to Azure environments. An attacker controlling an account that has high enough permissions to obtain pod information from the openshift-image-registry namespace could use this obtained client secret to perform actions as the registry operator’s Azure service account.

References

access.redhat.com/errata/RHSA-2024:3881

access.redhat.com/errata/RHSA-2024:3889

access.redhat.com/security/cve/CVE-2024-4369

bugzilla.redhat.com/show_bug.cgi?id=2278035

CVSS3

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

AI Score

6.5

Confidence

Low

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Related for VULNRICHMENT:CVE-2024-4369