PT-2023-28961 · Buildkit · Buildkite Elastic Ci For Aws

Published

2023-12-22

Updated

2024-06-28

CVE-2023-43741

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Buildkite Elastic CI for AWS versions prior to 6.7.1 Buildkite Elastic CI for AWS version 5.22.5

Description A time-of-check-time-of-use race condition issue allows the buildkite-agent user to bypass a symbolic link check for the PIPELINE PATH variable in the fix-buildkite-agent-builds-permissions script.

Recommendations For versions prior to 6.7.1, update to version 6.7.1 or later. For version 5.22.5, update to a version later than 5.22.5. As a temporary workaround, consider restricting access to the fix-buildkite-agent-builds-permissions script until a patch is available. Avoid using the PIPELINE PATH variable in the affected script until the issue is resolved.

Exploit

Fix

Time Of Check To Time Of Use

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-367

Related Identifiers

CVE-2023-43741

GHSA-R5HG-349Q-MG2Q

GO-2024-2440

Affected Products

Buildkite Elastic Ci For Aws

PT-2023-28961 · Buildkit · Buildkite Elastic Ci For Aws

CVE-2023-43741

Weakness Enumeration

Related Identifiers

Affected Products

References · 9