CVE-2024-56513

HIGH

Karmada <1.12.0 - Privilege Escalation

Title source: llm

Description

Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior to version 1.12.0, the PULL mode clusters registered with the `karmadactl register` command have excessive privileges to access control plane resources. By abusing these permissions, an attacker able to authenticate as the karmada-agent to a karmada cluster would be able to obtain administrative privileges over the entire federation system including all registered member clusters. Since Karmada v1.12.0, command `karmadactl register` restricts the access permissions of pull mode member clusters to control plane resources. This way, an attacker able to authenticate as the karmada-agent cannot control other member clusters in Karmada. As a workaround, one may restrict the access permissions of pull mode member clusters to control plane resources according to Karmada Component Permissions Docs.

References (4)

Core 4

Core References

Vendor Advisory x_refsource_confirm

https://github.com/karmada-io/karmada/security/advisories/GHSA-mg7w-c9x2-xh7r

Issue Tracking x_refsource_misc

https://github.com/karmada-io/karmada/pull/5793

Patch x_refsource_misc

https://github.com/karmada-io/karmada/commit/2c82055c4c7f469411b1ba48c4dba4841df04831

View Patch ZIP pw:eip

Various Sources x_refsource_misc

https://karmada.io/docs/administrator/security/component-permission

Scores

CVSS v4 8.7

EPSS 0.0048

EPSS Percentile 37.4%

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-266

Status published

Products (2)

karmada-io/karmada 0 - 1.12.0Go

karmada-io/karmada < 1.12.0

Published Jan 03, 2025

Tracked Since Feb 18, 2026