CVE-2024-12582

A flaw was found in the skupper console, a read-only interface that renders cluster network, traffic details, and metrics for a network application that a user sets up across a hybrid multi-cloud environment. When the default authentication method is used, a random password is generated for the "admin" user and is persisted in either a Kubernetes secret or a podman volume in a plaintext file. This authentication method can be manipulated by an attacker, leading to the reading of any user-readable file in the container filesystem, directly impacting data confidentiality. Additionally, the attacker may induce skupper to read extremely large files into memory, resulting in resource exhaustion and a denial of service attack.

CVSS v3 7.1 HIGH

7.1^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 4.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/errata/RHSA-2025:1413
https://access.redhat.com/security/cve/CVE-2024-12582
https://bugzilla.redhat.com/show_bug.cgi?id=2333540

Configurations

No configuration.

History

13 Feb 2025, 14:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2025:1413 -

24 Dec 2024, 04:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-12-24 04:15

Updated : 2025-02-13 14:15

NVD link : CVE-2024-12582

Mitre link : CVE-2024-12582

CVE.ORG link : CVE-2024-12582

JSON object : View

Products Affected

No product.

CWE

CWE-305

Authentication Bypass by Primary Weakness

{"id": "CVE-2024-12582", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 4.2, "exploitabilityScore": 2.8}]}, "published": "2024-12-24T04:15:05.137", "references": [{"url": "https://access.redhat.com/errata/RHSA-2025:1413", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2024-12582", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333540", "source": "secalert@redhat.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-305"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in the skupper console, a read-only interface that renders cluster network, traffic details, and metrics for a network application that a user sets up across a hybrid multi-cloud environment. When the default authentication method is used, a random password is generated for the \"admin\" user and is persisted in either a Kubernetes secret or a podman volume in a plaintext file. This authentication method can be manipulated by an attacker, leading to the reading of any user-readable file in the container filesystem, directly impacting data confidentiality. Additionally, the attacker may induce skupper to read extremely large files into memory, resulting in resource exhaustion and a denial of service attack."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en la consola del cl\u00faster, una interfaz de solo lectura que muestra la red del cl\u00faster, detalles de tr\u00e1fico y m\u00e9tricas para una aplicaci\u00f3n de red que un usuario configura en un entorno h\u00edbrido de m\u00faltiples nubes. Cuando se utiliza el m\u00e9todo de autenticaci\u00f3n predeterminado, se genera una contrase\u00f1a aleatoria para el usuario \"admin\" y se conserva en un secreto de Kubernetes o en un volumen podman en un archivo de texto plano. Este m\u00e9todo de autenticaci\u00f3n puede ser manipulado por un atacante, lo que lleva a la lectura de cualquier archivo legible por el usuario en el sistema de archivos contenedor, lo que afecta directamente la confidencialidad de los datos. Adem\u00e1s, el atacante puede inducir a la recopilaci\u00f3n a leer archivos extremadamente grandes en la memoria, lo que provoca el agotamiento de los recursos y un ataque de denegaci\u00f3n de servicio."}], "lastModified": "2025-02-13T14:15:28.700", "sourceIdentifier": "secalert@redhat.com"}