CVE-2019-11244
3.3
CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N
Summary
In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the location specified by –cache-dir (defaulting to $HOME/.kube/http-cache), written with world-writeable permissions (rw-rw-rw-). If –cache-dir is specified and pointed at a different location accessible to other users/groups, the written files may be modified by other users/groups and disrupt the kubectl invocation.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Kubernetes | Kubernetes | v1.8.0 < v1.8* | affected |
| Kubernetes | Kubernetes | v1.9.0 < v1.9* | affected |
| Kubernetes | Kubernetes | v1.10.0 < v1.10* | affected |
| Kubernetes | Kubernetes | v1.11.0 < v1.11* | affected |
| Kubernetes | Kubernetes | v1.12.0 < v1.12* | affected |
| Kubernetes | Kubernetes | v1.13.0 < v1.13* | affected |
| Kubernetes | Kubernetes | v1.14.0 < v1.14* | affected |
Weaknesses
- CWE-524: CWE-524 Information Exposure Through Caching
Workarounds
Use the default –http-cache location in the $HOME directory or point it at a directory that is only accessible to desired users/groups.
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/kubernetes/kubernetes/issues/76676
- http://www.securityfocus.com/bid/108064
- https://security.netapp.com/advisory/ntap-20190509-0002/
- https://access.redhat.com/errata/RHSA-2019:3942
- https://access.redhat.com/errata/RHSA-2020:0020
- https://access.redhat.com/errata/RHSA-2020:0074
References
- https://github.com/kubernetes/kubernetes/issues/76676
- http://www.securityfocus.com/bid/108064
- https://security.netapp.com/advisory/ntap-20190509-0002/
- https://access.redhat.com/errata/RHSA-2019:3942
- https://access.redhat.com/errata/RHSA-2020:0020
- https://access.redhat.com/errata/RHSA-2020:0074
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.