CVE-2022-36089

HIGH

KubeVela <1.4.11, <1.5.4 - Auth Bypass

Title source: llm

Description

KubeVela is an application delivery platform Users using KubeVela's VelaUX APIServer could be affected by an authentication bypass vulnerability. In KubeVela prior to versions 1.4.11 and 1.5.4, VelaUX APIServer uses the `PlatformID` as the signed key to generate the JWT tokens for users. Another API called `getSystemInfo` exposes the platformID. This vulnerability allows users to use the platformID to re-generate the JWT tokens to bypass the authentication. Versions 1.4.11 and 1.5.4 contain a patch for this issue.

References (2)

[Third Party Advisory] https://github.com/kubevela/kubevela/pull/4634

[Patch, Third Party Advisory] https://github.com/kubevela/kubevela/security/advisories/GHSA-cq42-w295-r29q

Scores

CVSS v3 8.2

EPSS 0.0034

EPSS Percentile 56.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-294

Status published

Products (1)

kubevela/kubevela 1.4.0 - 1.4.11

Published Sep 07, 2022

Tracked Since Feb 18, 2026