google secret-manager-provider-secret-store-csi-driver CVE-2020-8567 vulnerability in Google and Other Products
Published on January 21, 2021

Kubernetes Secrets Store CSI Driver plugin directory traversals

product logo product logo product logo
Kubernetes Secrets Store CSI Driver Vault Plugin prior to v0.0.6, Azure Plugin prior to v0.0.10, and GCP Plugin prior to v0.2.0 allow an attacker who can create specially-crafted SecretProviderClass objects to write to arbitrary file paths on the host filesystem, including /var/lib/kubelet/pods.

NVD

Vulnerability Analysis

CVE-2020-8567 can be exploited with network access, and requires small amount of user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity and availability.

Attack Vector:
NETWORK
Attack Complexity:
HIGH
Privileges Required:
LOW
User Interaction:
NONE
Scope:
CHANGED
Confidentiality Impact:
NONE
Integrity Impact:
LOW
Availability Impact:
LOW

Weakness Type

Path Traversal: '../filedir'

The software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize "../" sequences that can resolve to a location that is outside of that directory.


Products Associated with CVE-2020-8567

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-8567 are published in these products:

Google Secret Manager Provider Secret Store Csi Driver
 
HashiCorp Vault Provider Secrets Store Csi Driver
 
Microsoft Azure Key Vault Provider Secrets Store Csi Driver
 

Affected Versions

Kubernetes Secrets Store CSI Driver:

Exploit Probability

EPSS
0.16%
Percentile
36.19%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.