CVE-2021-27098Improper Certificate Validation in Spiffe Spire

CWE-295Improper Certificate ValidationCWE-284Improper Access Control4 documents4 sources
Severity
8.1HIGHNVD
EPSS
0.1%
top 69.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Github.com Spiffe SpireCncf Spire
Timeline
PublishedMar 5
Latest updateMay 21

Description

In SPIRE 0.8.1 through 0.8.4 and before versions 0.9.4, 0.10.2, 0.11.3 and 0.12.1, specially crafted requests to the FetchX509SVID RPC of SPIRE Server’s Legacy Node API can result in the possible issuance of an X.509 certificate with a URI SAN for a SPIFFE ID that the agent is not authorized to distribute. Proper controls are in place to require that the caller presents a valid agent certificate that is already authorized to issue at least one SPIFFE ID, and the requested SPIFFE ID belongs to th

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NExploitability: 2.8 | Impact: 5.2

Affected Packages2 packages

Gogithub.com/spiffe_spire0.8.10.8.5+4
NVDcncf/spire0.9.00.9.4+4

🔴Vulnerability Details

3
OSV
Legacy Node API Allows Impersonation in github.com/spiffe/spire/pkg/server/endpoints/node2021-05-21
GHSA
Legacy Node API Allows Impersonation in github.com/spiffe/spire/pkg/server/endpoints/node2021-05-21
CVEList
CVE-2021-27098: In SPIRE 02021-03-05
CVE-2021-27098 — Improper Certificate Validation | cvebase