cbcvebase.

Github.Com Kubeoperator Kubepi vulnerabilities

5 known vulnerabilities affecting github.com/kubeoperator_kubepi.

Total CVEs
5
CISA KEV
0
Public exploits
2
Exploited in wild
2
Severity breakdown
CRITICAL2HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2023-22463P1CRITICALExploitedPoC≥ 0, < 1.6.32023-01-06
CVE-2023-22463 [CRITICAL] CWE-798 KubePi allows malicious actor to login with a forged JWT token via Hardcoded Jwtsigkeys KubePi allows malicious actor to login with a forged JWT token via Hardcoded Jwtsigkeys ### Summary The jwt authentication function of kubepi <= v1.6.2 uses hard-coded Jwtsigkeys, resulting in the same Jwtsigkeys for all online projects. This means that an attacker can forge any jwt token to take over the administrator account of any online project. ### Details [`session.go
ghsaosv
CVE-2023-22478P2HIGHExploitedPoC≥ 0, < 1.6.42023-01-09
CVE-2023-22478 [HIGH] CWE-862 KubePi may allow unauthorized access to system API KubePi may allow unauthorized access to system API ### Summary Unauthorized access refers to the ability to bypass the system's preset permission settings to access some API interfaces. The attack exploits a flaw in how online applications handle routing permissions. ### Affected Version <= v1.6.3 ### Patches The vulnerability has been fixed in v1.6.4. https://github.com/KubeOperator/KubePi/commit/0c6774bf5d9003
ghsaosv
CVE-2023-37917P3CRITICAL≥ 0, < 1.6.52023-07-21
CVE-2023-37917 [CRITICAL] CWE-269 KubePi Privilege Escalation vulnerability KubePi Privilege Escalation vulnerability ### Summary A normal user has permission to create/update users, they can become admin by editing the `isadmin` value in the request ### PoC Change the value of the `isadmin` field in the request to true: https://drive.google.com/file/d/1e8XJbIFIDXaFiL-dqn0a0b6u7o3CwqSG/preview ### Impact Elevate user privileges
ghsaosv
CVE-2023-37916P3MEDIUM≥ 0, < 1.6.52023-07-21
CVE-2023-37916 [MEDIUM] CWE-200 KubePi may leak password hash of any user KubePi may leak password hash of any user ### Summary http://kube.pi/kubepi/api/v1/users/search?pageNum=1&&pageSize=10 leak password of any user (including admin). This leads to password crack attack ### PoC https://drive.google.com/file/d/1ksdawJ1vShRJyT3wAgpqVmz-Ls6hMA7M/preview ### Impact - Leaking confidential information. - Can lead to password cracking attacks
ghsaosv
CVE-2023-22479P4HIGH≥ 0, < 1.6.42023-01-09
CVE-2023-22479 [HIGH] CWE-384 KubePi session fixation attack allows an attacker to hijack a legitimate user session. KubePi session fixation attack allows an attacker to hijack a legitimate user session. ### Summary A session fixation attack allows an attacker to hijack a legitimate user session. The attack investigates a flaw in how the online application handles the session ID, especially the susceptible web application. ### Affected Version <= v1.6.3 ### Patches The vulnerability has been
ghsaosv
Github.Com Kubeoperator Kubepi vulnerabilities | cvebase