Kubernetes Java client libraries unvalidated path traversal in Copy implementation
CVE-2020-8570

9.1CRITICAL

Key Information:

Vendor: Kubernetes
Status: Kubernetes Java Client
Vendor: CVE Published:; 21 January 2021

Summary

Kubernetes Java client libraries in version 10.0.0 and versions prior to 9.0.1 allow writes to paths outside of the current directory when copying multiple files from a remote pod which sends a maliciously crafted archive. This can potentially overwrite any files on the system of the process executing the client code.

Affected Version(s)

Kubernetes Java Client all versions prior to 9.0

Kubernetes Java Client 9.0 < 9.0.2

Kubernetes Java Client 10.0 < 10.0.1

References

https://groups.google.com/g/kubernetes-security-announce/...

x_refsource_MISC

https://github.com/kubernetes-client/java/issues/1491

x_refsource_MISC

https://lists.apache.org/thread.html/rcafa485d63550657f06...

mailing-listx_refsource_MLIST

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 21, 2021
Vulnerability Reserved
Feb 3, 2020

Credit

Discovered via CodeQL automated scanning on GitHub

.