CVE-2020-8554Unverified Ownership in Kubernetes

CWE-283Unverified OwnershipCWE-200Sensitive Information Exposure13 documents10 sources
Severity
5.0MEDIUMNVD
CNA6.3
EPSS
24.8%
top 3.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
KubernetesK8s.io KubernetesOracle Communications Cloud Native Core Network Slice Selection Function+2 more
Timeline
PublishedJan 21
Latest updateApr 15

Description

Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP service and set the spec.externalIPs field, to intercept traffic to that IP address. Additionally, an attacker who is able to patch the status (which is considered a privileged operation and should not typically be granted to users) of a LoadBalancer service can set the status.loadBalancer.ingress.ip to similar effect.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:LExploitability: 1.6 | Impact: 3.4

Affected Packages6 packages

Debiankubernetes/kubernetes< 1.31.4+ds-1+1
CVEListV5kubernetes/kubernetesKubernetes all versions

Patches

Patch: www.oracle.comPatch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

4
OSV
Unverified Ownership in Kubernetes2022-02-08
GHSA
Unverified Ownership in Kubernetes2022-02-08
OSV
CVE-2020-8554: Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP service and set the spec2021-01-21
CVEList
Kubernetes man in the middle using LoadBalancer or ExternalIPs2021-01-21

📋Vendor Advisories

5
Oracle
Oracle Oracle Communications Risk Matrix: Policy (Kubernetes) — CVE-2020-85542022-04-15
Oracle
Oracle Oracle Communications Risk Matrix: SCP (Kubernetes API) — CVE-2020-85542022-01-15
Microsoft
Kubernetes man in the middle using LoadBalancer or ExternalIPs2021-01-12
Red Hat
kubernetes: MITM using LoadBalancer or ExternalIPs2020-12-07
Debian
CVE-2020-8554: kubernetes - Kubernetes API server in all versions allow an attacker who is able to create a ...2020

🕵️Threat Intelligence

2
Unit42
Protecting Against an Unfixed Kubernetes Man-in-the-Middle Vulnerability (CVE-2020-8554)2020-12-21
Unit42
Protecting Against an Unfixed Kubernetes Man-in-the-Middle Vulnerability (CVE-2020-8554)2020-12-21

💬Community

1
Bugzilla
CVE-2020-8554 kubernetes: MITM using LoadBalancer or ExternalIPs2020-10-23
CVE-2020-8554 — Unverified Ownership in Kubernetes | cvebase