CVE-2024-1725

A flaw was found in the kubevirt-csi component of OpenShift Virtualization's Hosted Control Plane (HCP). This issue could allow an authenticated attacker to gain access to the root HCP worker node's volume by creating a custom Persistent Volume that matches the name of a worker node.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/errata/RHSA-2024:1559	Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:1891	Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:2047	Vendor Advisory
https://access.redhat.com/security/cve/CVE-2024-1725	Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2265398	Issue Tracking
https://access.redhat.com/errata/RHSA-2024:1559	Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:1891	Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:2047	Vendor Advisory
https://access.redhat.com/security/cve/CVE-2024-1725	Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2265398	Issue Tracking

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:redhat:openshift_container_platform:4.13:::::::*
	cpe:2.3:a:redhat:openshift_container_platform:4.14:::::::*
	cpe:2.3:a:redhat:openshift_container_platform:4.15:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.13:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.14:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.15:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.13:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.14:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.15:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.13:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.14:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.15:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_power:4.13:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_power:4.14:::::::*
	cpe:2.3:a:redhat:openshift_container_platform_for_power:4.15:::::::*

History

26 Mar 2025, 05:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~8.1~~	v2 : unknown v3 : 6.5

11 Mar 2025, 16:55

Type	Values Removed	Values Added
CWE		NVD-CWE-noinfo
First Time		Redhat openshift Container Platform For Ibm Z Redhat openshift Container Platform For Linuxone Redhat openshift Container Platform For Power Redhat Redhat openshift Container Platform Redhat openshift Container Platform For Arm64
CPE		cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.14:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_power:4.13:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.13:::::::* cpe:2.3:a:redhat:openshift_container_platform:4.13:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.15:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_power:4.15:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.15:::::::* cpe:2.3:a:redhat:openshift_container_platform:4.15:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.14:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.13:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_power:4.14:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.13:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.15:::::::* cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.14:::::::* cpe:2.3:a:redhat:openshift_container_platform:4.14:::::::*
References	~~() https://access.redhat.com/errata/RHSA-2024:1559 -~~	() https://access.redhat.com/errata/RHSA-2024:1559 - Vendor Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:1891 -~~	() https://access.redhat.com/errata/RHSA-2024:1891 - Vendor Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:2047 -~~	() https://access.redhat.com/errata/RHSA-2024:2047 - Vendor Advisory
References	~~() https://access.redhat.com/security/cve/CVE-2024-1725 -~~	() https://access.redhat.com/security/cve/CVE-2024-1725 - Vendor Advisory
References	~~() https://bugzilla.redhat.com/show_bug.cgi?id=2265398 -~~	() https://bugzilla.redhat.com/show_bug.cgi?id=2265398 - Issue Tracking

21 Nov 2024, 08:51

Type	Values Removed	Values Added
References	~~() https://access.redhat.com/errata/RHSA-2024:1559 -~~	() https://access.redhat.com/errata/RHSA-2024:1559 -
References	~~() https://access.redhat.com/errata/RHSA-2024:1891 -~~	() https://access.redhat.com/errata/RHSA-2024:1891 -
References	~~() https://access.redhat.com/errata/RHSA-2024:2047 -~~	() https://access.redhat.com/errata/RHSA-2024:2047 -
References	~~() https://access.redhat.com/security/cve/CVE-2024-1725 -~~	() https://access.redhat.com/security/cve/CVE-2024-1725 -
References	~~() https://bugzilla.redhat.com/show_bug.cgi?id=2265398 -~~	() https://bugzilla.redhat.com/show_bug.cgi?id=2265398 -

08 May 2024, 02:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2024:2047 -

26 Apr 2024, 20:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2024:1891 -

03 Apr 2024, 00:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2024:1559 -

08 Mar 2024, 14:02

Type	Values Removed	Values Added
Summary		(es) Se encontró una falla en el componente kubevirt-csi del plano de control alojado (HCP) de OpenShift Virtualization. Este problema podría permitir que un atacante autenticado obtenga acceso al volumen del nodo trabajador HCP raíz mediante la creación de un volumen persistente personalizado que coincida con el nombre de un nodo trabajador.

07 Mar 2024, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-03-07 20:15

Updated : 2025-03-26 05:15

NVD link : CVE-2024-1725

Mitre link : CVE-2024-1725

CVE.ORG link : CVE-2024-1725

JSON object : View

Products Affected

redhat

openshift_container_platform_for_linuxone
openshift_container_platform_for_arm64
openshift_container_platform
openshift_container_platform_for_power
openshift_container_platform_for_ibm_z

CWE

CWE-501

Trust Boundary Violation

NVD-CWE-noinfo

{"id": "CVE-2024-1725", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "secalert@redhat.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2024-03-07T20:15:50.690", "references": [{"url": "https://access.redhat.com/errata/RHSA-2024:1559", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:1891", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:2047", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2024-1725", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265398", "tags": ["Issue Tracking"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:1559", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2024:1891", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2024:2047", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/security/cve/CVE-2024-1725", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265398", "tags": ["Issue Tracking"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-501"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in the kubevirt-csi component of OpenShift Virtualization's Hosted Control Plane (HCP). This issue could allow an authenticated attacker to gain access to the root HCP worker node's volume by creating a custom Persistent Volume that matches the name of a worker node."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en el componente kubevirt-csi del plano de control alojado (HCP) de OpenShift Virtualization. Este problema podr\u00eda permitir que un atacante autenticado obtenga acceso al volumen del nodo trabajador HCP ra\u00edz mediante la creaci\u00f3n de un volumen persistente personalizado que coincida con el nombre de un nodo trabajador."}], "lastModified": "2025-03-26T05:15:40.107", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1FFF1D51-ABA8-4E54-B81C-A88C8A5E4842"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "486B3F69-1551-4F8B-B25B-A5864248811B"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4716808D-67EB-4E14-9910-B248A500FAFA"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "226AD7DB-D8CB-45A3-97AE-3FE79774133E"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B361729-2847-4FE1-9503-BF9FA81307C5"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA5959A2-F48B-449B-89AD-ECDE9E5418E6"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08B9C7A4-4D65-4771-B92D-914C9C9A6C4A"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99ADC66F-3B19-4767-B876-67BA1C8D195B"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4F24706-3DF4-49D0-870D-39D4FC02CF4A"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BDD2E6ED-9BDE-404B-AD0D-F78D69B13B34"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "065C13FF-588E-42F5-B3C9-3302082E6524"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1E0DF9A-C358-48A0-911F-0A17E1982E4B"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_power:4.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8FF27781-22D9-4283-959D-951C76429EF5"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_power:4.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F68F84F5-7671-4778-AE48-5CF243B62D88"}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform_for_power:4.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33D2A2D4-A006-422D-AA0C-8E764FB104C5"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}

6.5 /10