Skip to main content

Tekton Pipelines EUVDEUVD-2026-24165

| CVE-2026-40161 HIGH
Insertion of Sensitive Information Into Sent Data (CWE-201)
2026-04-21 GitHub_M GHSA-wjxp-xrpv-xpff
7.7
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
7.7 HIGH
AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
SUSE
HIGH
qualitative
Red Hat
7.7 MEDIUM
qualitative

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

5
Re-analysis Queued
Apr 22, 2026 - 21:37 vuln.today
cvss_changed
Analysis Generated
Apr 21, 2026 - 17:34 vuln.today
EUVD ID Assigned
Apr 21, 2026 - 17:00 euvd
EUVD-2026-24165
Analysis Generated
Apr 21, 2026 - 17:00 vuln.today
CVE Published
Apr 21, 2026 - 16:26 nvd
HIGH 7.7

DescriptionGitHub Advisory

Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. From 1.0.0 to 1.10.0, the Tekton Pipelines git resolver in API mode sends the system-configured Git API token to a user-controlled serverURL when the user omits the token parameter. A tenant with TaskRun or PipelineRun create permission can exfiltrate the shared API token (GitHub PAT, GitLab token, etc.) by pointing serverURL to an attacker-controlled endpoint.

AnalysisAI

Credential leakage in Tekton Pipelines git resolver allows authenticated users to exfiltrate system-configured Git API tokens (GitHub PAT, GitLab tokens) by directing the resolver to attacker-controlled endpoints. Affects versions 1.0.0 through 1.10.0 when users omit the token parameter in TaskRun or PipelineRun configurations. CVSS 7.7 with scope change reflects cross-tenant credential theft potential in multi-tenant Kubernetes environments. No active exploitation confirmed (not in CISA KEV), but exploitation is straightforward for authenticated cluster users with TaskRun/PipelineRun creation privileges.

Technical ContextAI

Tekton Pipelines is a Kubernetes-native CI/CD framework that extends Kubernetes with custom resource definitions for pipeline orchestration. The git resolver component operates in API mode to fetch pipeline definitions from Git repositories using configured authentication tokens. The vulnerability stems from insecure credential handling (CWE-201: Insertion of Sensitive Information Into Sent Data) where the resolver automatically attaches system-level Git credentials (GitHub Personal Access Tokens, GitLab API tokens) to requests when users specify a custom serverURL but omit explicit token parameters. This design flaw violates the principle of least privilege by allowing tenant-level users to redirect authenticated requests to arbitrary endpoints. The scope change (S:C) in the CVSS vector reflects the cross-tenant impact - an attacker with low privileges in one tenant can steal credentials that may provide broader system access beyond their original authorization boundary.

RemediationAI

Upgrade to Tekton Pipelines version 1.10.1 or later, which addresses the credential leakage by validating serverURL against configured Git hosts before attaching authentication tokens. Until patching, implement compensating controls: (1) Remove system-level Git API tokens from Tekton configuration and require users to provide explicit tokens in TaskRun/PipelineRun definitions - this eliminates the vulnerable credential pool but breaks workflows assuming automatic authentication; (2) Use Kubernetes RBAC to restrict TaskRun/PipelineRun creation to highly trusted users only - reduces attack surface but may conflict with CI/CD automation requirements; (3) Deploy network policies blocking egress from Tekton resolver pods to untrusted destinations - requires comprehensive allowlist of legitimate Git hosting endpoints and may interfere with private Git servers. Consult GitHub advisory GHSA-wjxp-xrpv-xpff for vendor-recommended migration path. After upgrading, audit Git API token permissions and rotate any tokens potentially exposed during the vulnerable period.

CVE-2025-1974 CRITICAL POC
9.8 Mar 25

A critical vulnerability in Kubernetes ingress-nginx controller allows unauthenticated attackers with pod network access

CVE-2026-45321 CRITICAL POC
9.6 May 12

Credential-harvesting malware compromised 84 versions of 42 TanStack npm packages on 2026-05-11 via chained GitHub Actio

CVE-2025-1098 HIGH POC
8.8 Mar 25

Kubernetes ingress-nginx contains a configuration injection vulnerability via the mirror-target and mirror-host Ingress

CVE-2025-24514 HIGH POC
8.8 Mar 25

A security issue was discovered in ingress-nginx https://github.com/kubernetes/ingress-nginx where the `auth-url` Ingres

CVE-2025-1097 HIGH POC
8.8 Mar 25

A security issue was discovered in ingress-nginx https://github.com/kubernetes/ingress-nginx where the `auth-tls-match-c

CVE-2020-8554 MEDIUM POC
6.3 Jan 21

Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP service and set the spec.exter

CVE-2025-55190 CRITICAL POC
9.9 Sep 04

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Rated critical severity (CVSS 9.9), this vulne

CVE-2018-18843 CRITICAL POC
10.0 Dec 04

The Kubernetes integration in GitLab Enterprise Edition 11.x before 11.2.8, 11.3.x before 11.3.9, and 11.4.x before 11.4

CVE-2026-22039 CRITICAL POC
9.9 Jan 27

Kyverno Kubernetes policy engine prior to 1.x has a privilege escalation vulnerability (CVSS 9.9) allowing policy bypass

CVE-2024-42480 CRITICAL POC
9.9 Aug 12

Kamaji is the Hosted Control Plane Manager for Kubernetes. Rated critical severity (CVSS 9.9), this vulnerability is rem

CVE-2023-28110 CRITICAL POC
9.9 Mar 16

Jumpserver is a popular open source bastion host, and Koko is a Jumpserver component that is the Go version of coco, ref

CVE-2026-25996 CRITICAL POC
9.8 Feb 12

String filter bypass in Inspektor Gadget Kubernetes eBPF tooling before fix. Insufficient string escaping enables filter

Vendor StatusVendor

SUSE

Severity: High

Share

EUVD-2026-24165 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy