CVE-2020-1764

HIGH

Kiali <1.15.1 - Auth Bypass

Title source: llm

Description

A hard-coded cryptographic key vulnerability in the default configuration file was found in Kiali, all versions prior to 1.15.1. A remote attacker could abuse this flaw by creating their own JWT signed tokens and bypass Kiali authentication mechanisms, possibly gaining privileges to view and alter the Istio configuration.

Exploits (1)

nomisec WORKING POC 1 stars

by jpts · poc

https://github.com/jpts/cve-2020-1764-poc

View Code ZIP pw:eip

References (2)

[Issue Tracking, Mitigation, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1764

[Exploit, Mitigation, Vendor Advisory] https://kiali.io/news/security-bulletins/kiali-security-001/

Scores

CVSS v3 8.6

EPSS 0.0605

EPSS Percentile 90.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Details

CWE

CWE-321 CWE-798

Status published

Products (3)

kiali/kiali < 1.15.1

kiali/kiali 0 - 1.15.1Go

redhat/openshift_service_mesh 1.0

Published Mar 26, 2020

Tracked Since Feb 18, 2026