Bug 1792092 (CVE-2020-1701) - CVE-2020-1701 virt-handler: virt-handler daemonset clusterroles allows retrieval of secrets
Summary: CVE-2020-1701 virt-handler: virt-handler daemonset clusterroles allows retrie...
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2020-1701
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1792801 1798752
Blocks: 1792093
TreeView+ depends on / blocked
 
Reported: 2020-01-17 02:07 UTC by Pedro Sampaio
Modified: 2021-06-02 05:54 UTC (History)
3 users (show)

Fixed In Version: kubevirt 0.26.0
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in the KubeVirt main virt-handler regarding the access permissions of virt-handler. An attacker with access to create VMs could attach any secret within their namespace, allowing them to read the contents of that secret.
Clone Of:
Environment:
Last Closed: 2021-06-02 05:54:14 UTC
Embargoed:


Attachments (Terms of Use)

Description Pedro Sampaio 2020-01-17 02:07:57 UTC
A flaw was found in the kubevirt main virt-handler. Due to the access permissions of virt-handler an attacker with access to create vms could attach any secret within their namespace. This would allow them to read the contents of that secret.

Upstream issue:

https://github.com/kubevirt/kubevirt/issues/2967

Comment 3 Joshua Padman 2020-02-04 23:13:28 UTC
Mitigation:

This issue can only be resolved by applying updates.
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.


Note You need to log in before you can comment on or make changes to this bug.