Skip to main content

Openshift Service Mesh CVE-2020-1704

HIGH
Incorrect Privilege Assignment (CWE-266)
2020-02-17 secalert@redhat.com
7.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Feb 17, 2020 - 17:15 nvd
HIGH 7.8

DescriptionNVD

An insecure modification vulnerability in the /etc/passwd file was found in all versions of OpenShift ServiceMesh (maistra) before 1.0.8 in the openshift/istio-kialia-rhel7-operator-container. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges.

AnalysisAI

An insecure modification vulnerability in the /etc/passwd file was found in all versions of OpenShift ServiceMesh (maistra) before 1.0.8 in the openshift/istio-kialia-rhel7-operator-container. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-266. An insecure modification vulnerability in the /etc/passwd file was found in all versions of OpenShift ServiceMesh (maistra) before 1.0.8 in the openshift/istio-kialia-rhel7-operator-container. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges. Affected products include: Redhat Openshift Service Mesh. Version information: before 1.0.8.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2020-27846 CRITICAL POC
9.8 Dec 21

A signature verification vulnerability exists in crewjam/saml. Rated critical severity (CVSS 9.8), this vulnerability is

CVE-2020-1764 HIGH POC
8.6 Mar 26

A hard-coded cryptographic key vulnerability in the default configuration file was found in Kiali, all versions prior to

CVE-2019-9900 HIGH POC
8.3 Apr 25

When parsing HTTP/1.x header values, Envoy 1.9.0 and before does not reject embedded zero characters (NUL, ASCII 0x0). R

CVE-2021-3495 HIGH
8.8 Jun 01

An incorrect access control flaw was found in the kiali-operator in versions before 1.33.0 and before 1.24.7. Rated high

CVE-2020-1762 HIGH
8.6 Apr 27

An insufficient JWT validation vulnerability was found in Kiali versions 0.4.0 to 1.15.0 and was fixed in Kiali version

CVE-2020-8661 HIGH
7.5 Mar 04

CNCF Envoy through 1.13.0 may consume excessive amounts of memory when responding internally to pipelined requests. Rate

CVE-2020-8659 HIGH
7.5 Mar 04

CNCF Envoy through 1.13.0 may consume excessive amounts of memory when proxying HTTP/1.1 requests or responses with many

CVE-2019-9518 HIGH
7.5 Aug 13

Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. Rated

CVE-2019-9517 HIGH
7.5 Aug 13

Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of s

CVE-2019-9515 HIGH
7.5 Aug 13

Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service. Rated high s

CVE-2019-9514 HIGH
7.5 Aug 13

Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. Rated high seve

CVE-2019-9513 HIGH
7.5 Aug 13

Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. Rated high sev

Share

CVE-2020-1704 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy