CVE-2021-3636

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions OpenShift versions prior to 4.8

Description The issue is related to the generated certificate for the in-cluster Service CA in OpenShift, which incorrectly includes additional certificates. This allows an attacker that compromises any of the additional CAs to masquerade as a trusted in-cluster service. The Service CA is automatically mounted into all pods, enabling them to connect to trusted in-cluster services that present certificates signed by the trusted Service CA.

Recommendations For versions prior to 4.8, update to version 4.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the Service CA to minimize the risk of exploitation.

Exploit

Fix

Improper Authentication

Improper Certificate Validation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287CWE-295

Related Identifiers

BDU:2021-03969

CVE-2021-3636

RHSA-2021:2437

Affected Products

Openshift

CVE-2021-3636

Weakness Enumeration

Related Identifiers

Affected Products

References · 7