Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Privilege escalation using hop-by-hop Connection header
Vulnerability Description
capsule-proxy is a reverse proxy for Capsule Operator which provides multi-tenancy in Kubernetes. In versions prior to 0.2.1 an attacker with a proper authentication mechanism may use a malicious `Connection` header to start a privilege escalation attack towards the Kubernetes API Server. This vulnerability allows for an exploit of the `cluster-admin` Role bound to `capsule-proxy`. There are no known workarounds for this issue.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
认证机制不恰当
Vulnerability Title
capsule-proxy 授权问题漏洞
Vulnerability Description
capsule-proxy是允许克服 Kubernetes API Server 在列出拥有的集群范围资源方面的限制,例如 Namespace、Ingress 和 Storage Classes、Nodes 以及 Capsule 涵盖的其他资源。 capsule-proxy 0.2.1之前版本存在安全漏洞,该漏洞源于软件缺少对于Connection头部的校验,具有正确身份验证机制的攻击者可利用该漏洞可能会使用恶意的“Connection”头启动对Kubernetes API服务器的权限升级攻击。该漏洞允许
CVSS Information
N/A
Vulnerability Type
N/A