CVE-2018-1002105

Published: Dic 05, 2018 Last Modified: Nov 21, 2024

ExploitDB:

Other exploit source:

Google Dorks:

CRITICAL 9,8

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: high

HIGH 7,5

Source: [email protected]

Access Vector: network

Access Complexity: low

Authentication: none

Confidentiality: partial

Integrity: partial

Availability: partial

Description

AI Translation Available

In all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, incorrect handling of error responses to proxied upgrade requests in the kube-apiserver allowed specially crafted requests to establish a connection through the Kubernetes API server to backend servers, then send arbitrary requests over the same connection directly to the backend, authenticated with the Kubernetes API server's TLS credentials used to establish the backend connection.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,9070

Percentile

1,0th

Updated

EPSS Score Trend (Last 90 Days)

Exploit

Kubernetes - (Unauthenticated) Arbitrary Requests

Author: evict Published:

View Exploit Code →

Exploit

Kubernetes - (Authenticated) Arbitrary Requests

Author: evict Published:

View Exploit Code →

Application

Kubernetes by Kubernetes

Product Information

Vendor Kubernetes

Product Kubernetes

Version Range Affected

From 1.12.0 (inclusive)

To 1.12.2 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Openshift Container Platform by Redhat

Product Information

Vendor Redhat

Product Openshift Container Platform

Version 3.11

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:redhat:openshift_container_platform:3.11:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Kubernetes by Kubernetes

Product Information

Vendor Kubernetes

Product Kubernetes

Version Range Affected

From 1.0.0 (inclusive)

To 1.9.11 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Openshift Container Platform by Redhat

Product Information

Vendor Redhat

Product Openshift Container Platform

Version 3.10

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:redhat:openshift_container_platform:3.10:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Trident by Netapp

Product Information

Vendor Netapp

Product Trident

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:netapp:trident:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Openshift Container Platform by Redhat

Product Information

Vendor Redhat

Product Openshift Container Platform

Version 3.4

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:redhat:openshift_container_platform:3.4:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Kubernetes by Kubernetes

Product Information

Vendor Kubernetes

Product Kubernetes

Version Range Affected

From 1.11.0 (inclusive)

To 1.11.4 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Kubernetes by Kubernetes

Product Information

Vendor Kubernetes

Product Kubernetes

Version Range Affected

From 1.10.0 (inclusive)

To 1.10.10 (inclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Kubernetes by Kubernetes

Product Information

Vendor Kubernetes

Product Kubernetes

Version 1.9.12

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:kubernetes:kubernetes:1.9.12:beta0:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Openshift Container Platform by Redhat

Product Information

Vendor Redhat

Product Openshift Container Platform

Version 3.6

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:redhat:openshift_container_platform:3.6:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Openshift Container Platform by Redhat

Product Information

Vendor Redhat

Product Openshift Container Platform

Version 3.2

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Openshift Container Platform by Redhat

Product Information

Vendor Redhat

Product Openshift Container Platform

Version 3.8

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:redhat:openshift_container_platform:3.8:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Openshift Container Platform by Redhat

Product Information

Vendor Redhat

Product Openshift Container Platform

Version 3.5

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:redhat:openshift_container_platform:3.5:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Openshift Container Platform by Redhat

Product Information

Vendor Redhat

Product Openshift Container Platform

Version 3.3

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

http://lists.opensuse.org/opensuse-security-announce/2020-0…

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html

https://access.redhat.com/errata/RHSA-2018:3537

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3537

https://access.redhat.com/errata/RHSA-2018:3549

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3549

https://access.redhat.com/errata/RHSA-2018:3551

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3551

https://access.redhat.com/errata/RHSA-2018:3598

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3598

https://access.redhat.com/errata/RHSA-2018:3624

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3624

https://access.redhat.com/errata/RHSA-2018:3742

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3742

https://access.redhat.com/errata/RHSA-2018:3752

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3752

https://access.redhat.com/errata/RHSA-2018:3754

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3754

https://github.com/evict/poc_CVE-2018-1002105

Exploit Third Party Advisory

https://github.com/evict/poc_CVE-2018-1002105

https://github.com/kubernetes/kubernetes/issues/71411

Issue Tracking Mitigation Patch Third Party Advisory

https://github.com/kubernetes/kubernetes/issues/71411

https://groups.google.com/forum/#%21topic/kubernetes-announ…

https://groups.google.com/forum/#%21topic/kubernetes-announce/GVllWCg6L88

https://security.netapp.com/advisory/ntap-20190416-0001/

Third Party Advisory

https://security.netapp.com/advisory/ntap-20190416-0001/

https://www.coalfire.com/The-Coalfire-Blog/December-2018/Ku…

Mitigation Third Party Advisory

https://www.coalfire.com/The-Coalfire-Blog/December-2018/Kubernetes-Vulnerabili…

https://www.exploit-db.com/exploits/46052/

Exploit Third Party Advisory VDB Entry

https://www.exploit-db.com/exploits/46052/

https://www.exploit-db.com/exploits/46053/

Exploit Third Party Advisory VDB Entry

https://www.exploit-db.com/exploits/46053/

http://www.openwall.com/lists/oss-security/2019/06/28/2

http://www.openwall.com/lists/oss-security/2019/07/06/3

http://www.openwall.com/lists/oss-security/2019/07/06/4

http://www.securityfocus.com/bid/106068

Third Party Advisory VDB Entry

http://www.securityfocus.com/bid/106068

http://lists.opensuse.org/opensuse-security-announce/2020-0…

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html

https://access.redhat.com/errata/RHSA-2018:3537

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3537

https://access.redhat.com/errata/RHSA-2018:3549

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3549

https://access.redhat.com/errata/RHSA-2018:3551

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3551

https://access.redhat.com/errata/RHSA-2018:3598

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3598

https://access.redhat.com/errata/RHSA-2018:3624

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3624

https://access.redhat.com/errata/RHSA-2018:3742

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3742

https://access.redhat.com/errata/RHSA-2018:3752

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3752

https://access.redhat.com/errata/RHSA-2018:3754

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3754

https://github.com/evict/poc_CVE-2018-1002105

Exploit Third Party Advisory

https://github.com/evict/poc_CVE-2018-1002105

https://github.com/kubernetes/kubernetes/issues/71411

Issue Tracking Mitigation Patch Third Party Advisory

https://github.com/kubernetes/kubernetes/issues/71411

https://groups.google.com/forum/#%21topic/kubernetes-announ…

https://groups.google.com/forum/#%21topic/kubernetes-announce/GVllWCg6L88

https://security.netapp.com/advisory/ntap-20190416-0001/

Third Party Advisory

https://security.netapp.com/advisory/ntap-20190416-0001/

https://www.coalfire.com/The-Coalfire-Blog/December-2018/Ku…

Mitigation Third Party Advisory

https://www.coalfire.com/The-Coalfire-Blog/December-2018/Kubernetes-Vulnerabili…

https://www.exploit-db.com/exploits/46052/

Exploit Third Party Advisory VDB Entry

https://www.exploit-db.com/exploits/46052/

https://www.exploit-db.com/exploits/46053/

Exploit Third Party Advisory VDB Entry

https://www.exploit-db.com/exploits/46053/

http://www.openwall.com/lists/oss-security/2019/06/28/2

http://www.openwall.com/lists/oss-security/2019/07/06/3

http://www.openwall.com/lists/oss-security/2019/07/06/4

http://www.securityfocus.com/bid/106068

Third Party Advisory VDB Entry

http://www.securityfocus.com/bid/106068

CVE-2018-1002105

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

Kubernetes - (Unauthenticated) Arbitrary Requests

Kubernetes - (Authenticated) Arbitrary Requests

Kubernetes by Kubernetes

Product Information

Openshift Container Platform by Redhat

Product Information

Kubernetes by Kubernetes

Product Information

Openshift Container Platform by Redhat

Product Information

Trident by Netapp

Product Information

Openshift Container Platform by Redhat

Product Information

Kubernetes by Kubernetes

Product Information

Kubernetes by Kubernetes

Product Information

Kubernetes by Kubernetes

Product Information

Openshift Container Platform by Redhat

Product Information

Openshift Container Platform by Redhat

Product Information

Openshift Container Platform by Redhat

Product Information

Openshift Container Platform by Redhat

Product Information

Openshift Container Platform by Redhat

Product Information

Iscriviti alla newsletter