CVE-2024-5037

HIGH

Red Hat OpenShift Container Platform 4.12-4.16 - Authentication Bypass via Forged JWT Token

Title source: llm

Description

A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can use a forged token to bypass the issue ("iss") check during JSON web token (JWT) authentication.

References (9)

Core 9

Core References

Vendor Advisory vdb-entry x_refsource_redhat

https://access.redhat.com/security/cve/CVE-2024-5037

Issue Tracking, Vendor Advisory issue-tracking x_refsource_redhat

https://bugzilla.redhat.com/show_bug.cgi?id=2272339

Patch, Third Party Advisory

https://github.com/kubernetes/kubernetes/pull/123540

Product

https://github.com/openshift/telemeter/blob/a9417a6062c3a31ed78c06ea3a0613a52f2029b2/pkg/authorize/jwt/client_authorizer.go#L78

View Writeup ZIP pw:eip

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:4151

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:4156

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:4329

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:4484

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2024:5200

Scores

CVSS v3 7.5

EPSS 0.0081

EPSS Percentile 52.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-290

Status published

Products (10)

Red Hat/Logging Subsystem for Red Hat OpenShift

Red Hat/Red Hat OpenShift Container Platform 4.12 v4.12.0-202408071159.p0.gc9592de.assembly.stream.el8

Red Hat/Red Hat OpenShift Container Platform 4.13 v4.13.0-202407081338.p0.g0634a6d.assembly.stream.el8

Red Hat/Red Hat OpenShift Container Platform 4.14 v4.14.0-202407021509.p0.g1f72681.assembly.stream.el8

Red Hat/Red Hat OpenShift Container Platform 4.15 v4.15.0-202406200537.p0.g14489f7.assembly.stream.el9

Red Hat/Red Hat OpenShift Container Platform 4.16 v4.16.0-202406200537.p0.gc1ecd10.assembly.stream.el9

Red Hat/Red Hat OpenShift distributed tracing 2

Red Hat/Red Hat OpenShift distributed tracing 3

redhat/openshift_container_platform 4.0

redhat/openshift_distributed_tracing 2.0

Published Jun 05, 2024

Tracked Since Feb 18, 2026