CVE-2024-9486

Name of the Vulnerable Software and Affected Versions Kubernetes Image Builder versions <= v0.1.37

Description A security issue was discovered in the Kubernetes Image Builder where default credentials are enabled during the image build process. Virtual machine images built using the Proxmox provider do not disable these default credentials, and nodes using the resulting images may be accessible via these default credentials. The credentials can be used to gain root access. Kubernetes clusters are only affected if their nodes use VM images created via the Image Builder project with its Proxmox provider. This issue allows attackers to exploit default credentials to take over virtual machines using certain image builds.

Recommendations For Kubernetes Image Builder versions <= v0.1.37, update to v0.1.38 to mitigate this issue. As a temporary workaround, consider disabling the default credentials in the image build process to prevent unauthorized access. Restrict access to the vulnerable VM images to minimize the risk of exploitation. Avoid using the default credentials in the affected API endpoints until the issue is resolved.