CVE-2018-1002105

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Kubernetes versions prior to 1.10.11 Kubernetes versions prior to 1.11.5 Kubernetes versions prior to 1.12.3

Description The issue is related to incorrect handling of error responses to proxied upgrade requests in the kube-apiserver, allowing specially crafted requests to establish a connection through the Kubernetes API server to backend servers. This enables sending arbitrary requests over the same connection directly to the backend, authenticated with the Kubernetes API server's TLS credentials. The vulnerability can be exploited by a remote attacker to escalate privileges.

Recommendations For versions prior to 1.10.11, update to version 1.10.11 or later. For versions prior to 1.11.5, update to version 1.11.5 or later. For versions prior to 1.12.3, update to version 1.12.3 or later.

Exploit

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-388CWE-269

Related Identifiers

ALSA-2019_3403

ALSA-2019_3494

ALSA-2025_16880

ALT-PU-2018-2805

BDU:2019-00822

CVE-2018-1002105

ELSA-2018-4303

GHSA-579H-MV94-G4GP

GO-2022-0792

OPENSUSE-SU-2020:0554-1

OPENSUSE-SU-2020_0554-1

OPENSUSE-SU-2024:10901-1

RHSA-2018:2906

RHSA-2018:2908

RHSA-2018:3537

RHSA-2018:3549

RHSA-2018:3551

RHSA-2018:3598

RHSA-2018:3624

RHSA-2018:3742

RHSA-2018:3752

RHSA-2018:3754

Affected Products

Alt Linux

Kubernetes

Suse

CVE-2018-1002105

Weakness Enumeration

Related Identifiers

Affected Products

References · 81