Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
KubeAI has an OS Command Injection via Model URL in Ollama Engine startup probe allows arbitrary command execution in model pods
Vulnerability Description
KubeAI is an AI inference operator for kubernetes. Prior to 0.23.2, the ollamaStartupProbeScript() function in internal/modelcontroller/engine_ollama.go constructs a shell command string using fmt.Sprintf with unsanitized model URL components (ref, modelParam). This shell command is executed via bash -c as a Kubernetes startup probe. An attacker who can create or update Model custom resources can inject arbitrary shell commands that execute inside model server pods. This vulnerability is fixed in 0.23.2.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
KubeAI 操作系统命令注入漏洞
Vulnerability Description
KubeAI是kubeai-project开源的一个在Kubernetes上部署和扩展机器学习模型的AI推理平台。 KubeAI 0.23.2之前版本存在操作系统命令注入漏洞,该漏洞源于ollamaStartupProbeScript函数使用未经清理的模型URL组件构造shell命令字符串,可能导致攻击者在模型服务器Pod内执行任意shell命令。
CVSS Information
N/A
Vulnerability Type
N/A