A flaw was found in the skupper console, a read-only interface that renders cluster network, traffic details, and metrics for a network application that a user sets up across a hybrid multi-cloud environment. When the default authentication method is used, a random password is generated for the admin user and is persisted in either a Kubernetes secret or a podman volume in a plaintext file. This authentication method can be manipulated by an attacker, leading to the reading of any user-readable file in the container filesystem, directly impacting data confidentiality. Additionally, the attacker may induce skupper to read extremely large files into memory, resulting in resource exhaustion and a denial of service attack.
The authentication algorithm is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Service Interconnect 1 for RHEL 9 | RedHat | service-interconnect/skupper-config-sync-rhel9:1.8.3-1 | * |
| Service Interconnect 1 for RHEL 9 | RedHat | service-interconnect/skupper-controller-podman-container-rhel9:1.8.3-1 | * |
| Service Interconnect 1 for RHEL 9 | RedHat | service-interconnect/skupper-controller-podman-rhel9:1.8.3-1 | * |
| Service Interconnect 1 for RHEL 9 | RedHat | service-interconnect/skupper-flow-collector-rhel9:1.8.3-1 | * |
| Service Interconnect 1 for RHEL 9 | RedHat | service-interconnect/skupper-operator-bundle:1.8.3-1 | * |
| Service Interconnect 1 for RHEL 9 | RedHat | service-interconnect/skupper-router-rhel9:2.7.3-1 | * |
| Service Interconnect 1 for RHEL 9 | RedHat | service-interconnect/skupper-service-controller-rhel9:1.8.3-1 | * |
| Service Interconnect 1 for RHEL 9 | RedHat | service-interconnect/skupper-site-controller-rhel9:1.8.3-1 | * |