Vulnerability DatabaseCVE-2018-1002105
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2018-1002105
December 05, 2018
In all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, incorrect handling of error responses to proxied upgrade requests in the kube-apiserver allowed specially crafted requests to establish a connection through the Kubernetes API server to backend servers, then send arbitrary requests over the same connection directly to the backend, authenticated with the Kubernetes API server's TLS credentials used to establish the backend connection.
Affected Packages
github.com/kubernetes/kubernetes (GO):
Affected version(s) >=v1.12.0 <v1.12.3
Fix Suggestion:
Update to version v1.12.3
github.com/kubernetes/kubernetes (GO):
Affected version(s) >=v1.11.0 <v1.11.5
Fix Suggestion:
Update to version v1.11.5
Related Resources (32)
https://groups.google.com/forum/#!topic/kubernetes-announce/GVllWCg6L88
https://github.com/evict/poc_CVE-2018-1002105
https://www.securityfocus.com/bid/106068
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html
https://access.redhat.com/errata/RHSA-2018:3752
https://security.netapp.com/advisory/ntap-20190416-0001
https://www.openwall.com/lists/oss-security/2019/07/06/4
http://www.openwall.com/lists/oss-security/2019/07/06/4
https://access.redhat.com/errata/RHSA-2018:3624
https://access.redhat.com/errata/RHSA-2018:3549
https://www.exploit-db.com/exploits/46052
https://www.exploit-db.com/exploits/46052/
https://www.exploit-db.com/exploits/46053
https://www.openwall.com/lists/oss-security/2019/07/06/3
https://access.redhat.com/errata/RHSA-2018:3551
https://www.openwall.com/lists/oss-security/2019/06/28/2
https://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html
https://github.com/kubernetes/kubernetes/issues/71411
https://github.com/kubernetes/kubernetes/commit/2257c1ecbe3c0cf71dd50b82752ae189c94ec905
https://groups.google.com/forum/#%21topic/kubernetes-announce/GVllWCg6L88
https://www.coalfire.com/The-Coalfire-Blog/December-2018/Kubernetes-Vulnerability-What-You-Can-Should-Do
https://github.com/advisories/GHSA-579h-mv94-g4gp
https://security.netapp.com/advisory/ntap-20190416-0001/
https://access.redhat.com/errata/RHSA-2018:3754
https://access.redhat.com/errata/RHSA-2018:3742
http://www.openwall.com/lists/oss-security/2019/06/28/2
http://www.securityfocus.com/bid/106068
http://www.openwall.com/lists/oss-security/2019/07/06/3
https://access.redhat.com/errata/RHSA-2018:3598
https://nvd.nist.gov/vuln/detail/CVE-2018-1002105
https://access.redhat.com/errata/RHSA-2018:3537
https://www.exploit-db.com/exploits/46053/
Do you need more information?
Contact Us
CVSS v4
Base Score:
9.3
Attack Vector
NETWORK
Attack Complexity
LOW
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
NONE
Vulnerable System Confidentiality
HIGH
Vulnerable System Integrity
HIGH
Vulnerable System Availability
HIGH
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH
CVSS v2
Base Score:
7.5
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
Weakness Type (CWE)
Improper Privilege Management
CWE-269
EPSS
Base Score:
90.70