KubeVela is an application delivery platform Users using KubeVela's VelaUX APIServer could be affected by an authentication bypass vulnerability. In KubeVela prior to versions 1.4.11 and 1.5.4, VelaUX APIServer uses the `PlatformID` as the signed key to generate the JWT tokens for users. Another API called `getSystemInfo` exposes the platformID. This vulnerability allows users to use the platformID to re-generate the JWT tokens to bypass the authentication. Versions 1.4.11 and 1.5.4 contain a patch for this issue.
References
Link | Resource |
---|---|
https://github.com/kubevela/kubevela/pull/4634 | Third Party Advisory |
https://github.com/kubevela/kubevela/security/advisories/GHSA-cq42-w295-r29q | Patch Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
16 Sep 2022, 16:19
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:kubevela:kubevela:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
References | (MISC) https://github.com/kubevela/kubevela/pull/4634 - Third Party Advisory | |
References | (CONFIRM) https://github.com/kubevela/kubevela/security/advisories/GHSA-cq42-w295-r29q - Patch, Third Party Advisory |
08 Sep 2022, 01:28
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-07 23:15
Updated : 2024-02-04 22:51
NVD link : CVE-2022-36089
Mitre link : CVE-2022-36089
CVE.ORG link : CVE-2022-36089
JSON object : View
Products Affected
kubevela
- kubevela
CWE
CWE-294
Authentication Bypass by Capture-replay