CVE-2019-11244

Summary

In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the location specified by –cache-dir (defaulting to $HOME/.kube/http-cache), written with world-writeable permissions (rw-rw-rw-). If –cache-dir is specified and pointed at a different location accessible to other users/groups, the written files may be modified by other users/groups and disrupt the kubectl invocation.

Affected Software

VendorProductVersion RangeStatus
KubernetesKubernetesv1.8.0 < v1.8*affected
KubernetesKubernetesv1.9.0 < v1.9*affected
KubernetesKubernetesv1.10.0 < v1.10*affected
KubernetesKubernetesv1.11.0 < v1.11*affected
KubernetesKubernetesv1.12.0 < v1.12*affected
KubernetesKubernetesv1.13.0 < v1.13*affected
KubernetesKubernetesv1.14.0 < v1.14*affected

Weaknesses

  • CWE-524: CWE-524 Information Exposure Through Caching

Workarounds

Use the default –http-cache location in the $HOME directory or point it at a directory that is only accessible to desired users/groups.

ADP Enrichment

CVE Program Container

Additional References

References