CVE-2024-39690

Name of the Vulnerable Software and Affected Versions Capsule versions 0.7.0 and earlier

Description The issue allows a tenant-owner to patch any arbitrary namespace that has not been taken over by a tenant, thereby gaining control of that namespace. This is possible because namespaces without the ownerReference field can be patched by the tenant-owner. The vulnerability can be exploited by sending a PATCH request to the /api/v1/namespaces/{namespace} endpoint, allowing the attacker to add an ownerReference field to the namespace.

Recommendations For Capsule versions 0.7.0 and earlier, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting the patch permission for tenant-owners to prevent them from patching arbitrary namespaces. Additionally, monitor your system for any suspicious activity, such as unauthorized namespace patches, and investigate any potential security incidents.