CVE-2020-8561 — Confused Deputy in Kubernetes

CWE-441 — Confused Deputy CWE-610 — Externally Controlled Reference to a Resource in Another Sphere CWE-601 — Open Redirect8 documents7 sources

Severity

4.1MEDIUMNVD

EPSS

0.2%

top 59.93%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Kubernetes K8s.io Kubernetes

Timeline

PublishedSep 20

Latest updateSep 21

Description

A security issue was discovered in Kubernetes where actors that control the responses of MutatingWebhookConfiguration or ValidatingWebhookConfiguration requests are able to redirect kube-apiserver requests to private networks of the apiserver. If that user can view kube-apiserver logs when the log level is set to 10, they can view the redirected responses and headers in the logs.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:NExploitability: 2.3 | Impact: 1.4

Affected Packages4 packages

▶Debiankubernetes/kubernetes< 1.20.5+really1.20.2-1+3

▶Gok8s.io/kubernetes1.22.2

▶CVEListV5kubernetes/kubernetesunspecified — 1.20.11+2

▶NVDkubernetes/kubernetes1.20.11, 1.21.5, 1.22.2+2

🔴Vulnerability Details

OSV

Confused Deputy in Kubernetes↗2021-09-21

▶

GHSA

Confused Deputy in Kubernetes↗2021-09-21

▶

OSV

CVE-2020-8561: A security issue was discovered in Kubernetes where actors that control the responses of MutatingWebhookConfiguration or ValidatingWebhookConfiguratio↗2021-09-20

▶

CVEList

Webhook redirect in kube-apiserver↗2021-09-20

▶

📋Vendor Advisories

Red Hat

kubernetes: Webhook redirect in kube-apiserver↗2021-09-15

▶

Microsoft

Webhook redirect in kube-apiserver↗2021-09-14

▶

Debian

CVE-2020-8561: kubernetes - A security issue was discovered in Kubernetes where actors that control the resp...↗2020

▶