CVE-2020-27151 - OpenCVE

An issue was discovered in Kata Containers through 1.11.3 and 2.x through 2.0-rc1. The runtime will execute binaries given using annotations without any kind of validation. Someone who is granted access rights to a cluster will be able to have kata-runtime execute arbitrary binaries as root on the worker nodes.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:S/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Katacontainers	Kata Containers

Configuration 1 [-]

OR	cpe:2.3:a:katacontainers:kata_containers::::::::
	cpe:2.3:a:katacontainers:kata_containers:2.0.0:alpha1::::::
	cpe:2.3:a:katacontainers:kata_containers:2.0.0:alpha2::::::
	cpe:2.3:a:katacontainers:kata_containers:2.0.0:alpha3::::::
	cpe:2.3:a:katacontainers:kata_containers:2.0.0:rc0::::::
	cpe:2.3:a:katacontainers:kata_containers:2.0.0:rc1::::::

No data.

References

Link	Providers
https://bugs.launchpad.net/katacontainers.io/+bug/1878234
https://github.com/kata-containers/kata-containers/releases/tag/2.0.0
https://github.com/kata-containers/runtime/releases/tag/1.11.5
https://github.com/kata-containers/runtime/releases/tag/1.12.0

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-12-07T13:03:54

Updated: 2024-08-04T16:11:35.618Z

Reserved: 2020-10-15T00:00:00

Link: CVE-2020-27151

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2020-12-07T14:15:11.280

Modified: 2020-12-08T18:17:39.247

Link: CVE-2020-27151

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in Kata Containers through 1.11.3 and 2.x through 2.0-rc1. The runtime will execute binaries given using annotations without any kind of validation. Someone who is granted access rights to a cluster will be able to have kata-runtime execute arbitrary binaries as root on the worker nodes."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-12-07T13:03:54", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://bugs.launchpad.net/katacontainers.io/+bug/1878234"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/kata-containers/runtime/releases/tag/1.12.0"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/kata-containers/runtime/releases/tag/1.11.5"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/kata-containers/kata-containers/releases/tag/2.0.0"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2020-27151", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An issue was discovered in Kata Containers through 1.11.3 and 2.x through 2.0-rc1. The runtime will execute binaries given using annotations without any kind of validation. Someone who is granted access rights to a cluster will be able to have kata-runtime execute arbitrary binaries as root on the worker nodes."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://bugs.launchpad.net/katacontainers.io/+bug/1878234", "refsource": "MISC", "url": "https://bugs.launchpad.net/katacontainers.io/+bug/1878234"}, {"name": "https://github.com/kata-containers/runtime/releases/tag/1.12.0", "refsource": "MISC", "url": "https://github.com/kata-containers/runtime/releases/tag/1.12.0"}, {"name": "https://github.com/kata-containers/runtime/releases/tag/1.11.5", "refsource": "MISC", "url": "https://github.com/kata-containers/runtime/releases/tag/1.11.5"}, {"name": "https://github.com/kata-containers/kata-containers/releases/tag/2.0.0", "refsource": "MISC", "url": "https://github.com/kata-containers/kata-containers/releases/tag/2.0.0"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T16:11:35.618Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://bugs.launchpad.net/katacontainers.io/+bug/1878234"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/kata-containers/runtime/releases/tag/1.12.0"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/kata-containers/runtime/releases/tag/1.11.5"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/kata-containers/kata-containers/releases/tag/2.0.0"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2020-27151", "datePublished": "2020-12-07T13:03:54", "dateReserved": "2020-10-15T00:00:00", "dateUpdated": "2024-08-04T16:11:35.618Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:katacontainers:kata_containers:*:*:*:*:*:*:*:*", "matchCriteriaId": "837D8922-BBA0-4464-9851-D52AD7C59B46", "versionEndIncluding": "1.11.3", "vulnerable": true}, {"criteria": "cpe:2.3:a:katacontainers:kata_containers:2.0.0:alpha1:*:*:*:*:*:*", "matchCriteriaId": "D1C7C4BF-DB78-44E1-AD20-2298E4F729F6", "vulnerable": true}, {"criteria": "cpe:2.3:a:katacontainers:kata_containers:2.0.0:alpha2:*:*:*:*:*:*", "matchCriteriaId": "9A447C73-22E0-453F-A68D-17ABF133DEEC", "vulnerable": true}, {"criteria": "cpe:2.3:a:katacontainers:kata_containers:2.0.0:alpha3:*:*:*:*:*:*", "matchCriteriaId": "9AC9C311-7B6A-41D0-A4AC-BC63327CE086", "vulnerable": true}, {"criteria": "cpe:2.3:a:katacontainers:kata_containers:2.0.0:rc0:*:*:*:*:*:*", "matchCriteriaId": "19CF0221-F242-41B1-8BDE-B8CCD45F81D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:katacontainers:kata_containers:2.0.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "D31F4F3B-69C0-40DF-8FAE-93389C89D840", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An issue was discovered in Kata Containers through 1.11.3 and 2.x through 2.0-rc1. The runtime will execute binaries given using annotations without any kind of validation. Someone who is granted access rights to a cluster will be able to have kata-runtime execute arbitrary binaries as root on the worker nodes."}, {"lang": "es", "value": "Se detect\u00f3 un problema en Kata Containers versiones hasta 1.11.3 y versiones 2.x hasta 2.0-rc1. El tiempo de ejecuci\u00f3n ejecutar\u00e1 los binarios proporcionados mediante anotaciones sin ning\u00fan tipo de validaci\u00f3n. Alguien a quien se le otorguen derechos de acceso a un cl\u00faster podr\u00e1 hacer que kata-runtime ejecute binarios arbitrarios como root en los nodos worker"}], "id": "CVE-2020-27151", "lastModified": "2020-12-08T18:17:39.247", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 9.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-12-07T14:15:11.280", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "url": "https://bugs.launchpad.net/katacontainers.io/+bug/1878234"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/kata-containers/kata-containers/releases/tag/2.0.0"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/kata-containers/runtime/releases/tag/1.11.5"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/kata-containers/runtime/releases/tag/1.12.0"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}