CVE-2023-48312
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-48312
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-48312.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-48312
- Aliases
- Related
- Published
- 2023-11-24T18:15:07Z
- Modified
- 2025-01-14T12:05:04.607968Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
capsule-proxy is a reverse proxy for the capsule operator project. Affected versions are subject to a privilege escalation vulnerability which is based on a missing check if the user is authenticated based on the
TokenReviewresult. All the clusters running with theanonymous-authKubernetes API Server setting disable (set tofalse) are affected since it would be possible to bypass the token review mechanism, interacting with the upper Kubernetes API Server. This privilege escalation cannot be exploited if you're relying only on client certificates (SSL/TLS). This vulnerability has been addressed in version 0.4.6. Users are advised to upgrade. - References
Affected packages
Git / github.com/clastix/capsule-proxy
Affected ranges
- Type
- GIT
- Repo
- https://github.com/clastix/capsule-proxy
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Type
- GIT
- Repo
- https://github.com/projectcapsule/capsule-proxy
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
helm-v0.*
helm-v0.3.2
helm-v0.3.3
helm-v0.3.4
helm-v0.3.5
helm-v0.3.6
helm-v0.3.7
helm-v0.4.0
helm-v0.4.1
helm-v0.4.2
helm-v0.4.3
helm-v0.4.9
helm-v0.5.0
v0.*
v0.0.1
v0.0.2
v0.0.3
v0.0.4
v0.0.5
v0.1.0
v0.1.1
v0.2.0
v0.2.1
v0.3.0
v0.3.0-rc1
v0.3.0-rc2
v0.3.1
v0.3.1-rc0
v0.3.2
v0.3.3
v0.4.0
v0.4.1
v0.4.2
v0.4.3
v0.4.4
v0.4.5