CVE-2024-5037
Openshift/telemeter: iss check during jwt authentication can be bypassed
Severity Score
7.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue ("iss") check during JSON web token (JWT) authentication.
Se encontró una falla en Telemeter de OpenShift. Si se cumplen ciertas condiciones, un atacante puede usar un token falsificado para evitar la verificación del problema ("iss") durante la autenticación del token web JSON (JWT).
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-05-16 CVE Reserved
- 2024-06-05 CVE Published
- 2024-08-20 EPSS Updated
- 2024-11-11 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-290: Authentication Bypass by Spoofing
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| https://github.com/openshift/telemeter/blob/a9417a6062c3a31ed78c06ea3a0613a52f2029b2/pkg/authorize/jwt/client_authorizer.go#L78 | Product |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/kubernetes/kubernetes/pull/123540 | 2024-07-17 |
| URL | Date | SRC |
|---|---|---|
| https://access.redhat.com/errata/RHSA-2024:4151 | 2024-07-17 | |
| https://access.redhat.com/errata/RHSA-2024:4156 | 2024-07-17 | |
| https://access.redhat.com/errata/RHSA-2024:4329 | 2024-07-17 | |
| https://access.redhat.com/errata/RHSA-2024:4484 | 2024-07-17 | |
| https://access.redhat.com/security/cve/CVE-2024-5037 | 2024-07-17 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=2272339 | 2024-07-17 | |
| https://access.redhat.com/errata/RHSA-2024:5200 | 2024-11-11 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Redhat Search vendor "Redhat" | Openshift Container Platform Search vendor "Redhat" for product "Openshift Container Platform" | 4.0 Search vendor "Redhat" for product "Openshift Container Platform" and version "4.0" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Openshift Distributed Tracing Search vendor "Redhat" for product "Openshift Distributed Tracing" | 2.0 Search vendor "Redhat" for product "Openshift Distributed Tracing" and version "2.0" | - |
Affected
| ||||||