Openshift/telemeter: iss check during jwt authentication can be bypassed

CVE-2024-5037

7.5HIGH

Key Information

Vendor: Red Hat
Status: Red Hat Openshift Container Platform 4.12; Red Hat Openshift Container Platform 4.13; Red Hat Openshift Container Platform 4.14; Red Hat Openshift Container Platform 4.15
Vendor: CVE Published:; 5 June 2024

Summary

A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue ("iss") check during JSON web token (JWT) authentication.

Affected Version(s)

Red Hat OpenShift Container Platform 4.12 <= v4.12.0-202408071159.p0.gc9592de.assembly.stream.el8

Red Hat OpenShift Container Platform 4.13 <= v4.13.0-202407081338.p0.g0634a6d.assembly.stream.el8

Red Hat OpenShift Container Platform 4.14 <= v4.14.0-202407021509.p0.g1f72681.assembly.stream.el8

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Risk change from: null to: 7.5 - (HIGH)
Jun 19, 2024
Vulnerability published.
Jun 5, 2024
Reported to Red Hat.
Mar 30, 2024

Collectors

NVD DatabaseMitre Database