Kubernetes ingress-nginx Compromise of auth via subset/superset namespace names
CVE-2020-8553

5.9MEDIUM

Key Information:

Vendor: Kubernetes
Status: Ingress-nginx
Vendor: CVE Published:; 29 July 2020

Summary

The Kubernetes ingress-nginx component prior to version 0.28.0 allows a user with the ability to create namespaces and to read and create ingress objects to overwrite the password file of another ingress which uses nginx.ingress.kubernetes.io/auth-type: basic and which has a hyphenated namespace or secret name.

Affected Version(s)

ingress-nginx < 0.28.0

References

https://github.com/kubernetes/ingress-nginx/issues/5126

x_refsource_CONFIRM

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 29, 2020
Vulnerability Reserved
Feb 3, 2020

Credit

Alex Orange