Openshift/telemeter: iss check during jwt authentication can be bypassed
CVE-2024-5037
7.5HIGH
Key Information
- Vendor
- Red Hat
- Status
- Red Hat Openshift Container Platform 4.12
- Red Hat Openshift Container Platform 4.13
- Red Hat Openshift Container Platform 4.14
- Red Hat Openshift Container Platform 4.15
- Vendor
- CVE Published:
- 5 June 2024
Summary
A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue ("iss") check during JSON web token (JWT) authentication.
Affected Version(s)
Red Hat OpenShift Container Platform 4.12 <= v4.12.0-202408071159.p0.gc9592de.assembly.stream.el8
Red Hat OpenShift Container Platform 4.13 <= v4.13.0-202407081338.p0.g0634a6d.assembly.stream.el8
Red Hat OpenShift Container Platform 4.14 <= v4.14.0-202407021509.p0.g1f72681.assembly.stream.el8
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Risk change from: null to: 7.5 - (HIGH)
Vulnerability published.
Reported to Red Hat.
Collectors
NVD DatabaseMitre Database