CVE-2023-2728

MEDIUM

Kubernetes < 1.24.14 - Improper Input Validation

Title source: rule

Description

Users may be able to launch containers that bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when using ephemeral containers. The policy ensures pods running with a service account may only reference secrets specified in the service account’s secrets field. Kubernetes clusters are only affected if the ServiceAccount admission plugin and the `kubernetes.io/enforce-mountable-secrets` annotation are used together with ephemeral containers.

Exploits (1)

nomisec WORKING POC

by Cgv-Dev · poc

https://github.com/Cgv-Dev/Metasploit-Module-TFM

View Code ZIP pw:eip

References (4)

[Mailing List] http://www.openwall.com/lists/oss-security/2023/07/06/3

[Issue Tracking] https://github.com/kubernetes/kubernetes/issues/118640

[Mailing List] https://groups.google.com/g/kubernetes-security-announce/c/vPWYJ_L84m8

[Vendor Advisory] https://security.netapp.com/advisory/ntap-20230803-0004/

Scores

CVSS v3 6.5

EPSS 0.0485

EPSS Percentile 89.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Details

CWE

CWE-20

Status published

Products (2)

k8s.io/kubernetes 1.27.0 - 1.27.3Go

kubernetes/kubernetes < 1.24.14

Published Jul 03, 2023

Tracked Since Feb 18, 2026