low

Predictible seed in Anthos Identity Service LDAP module

Published Wed, Sep 22nd, 2021

Platforms

gcp

Summary

A vulnerability was discovered in the Anthos Identity Service (AIS) LDAP module of Anthos clusters on VMware versions 1.8 and 1.8.1 where a seed key used in generating keys is predictable. With this vulnerability, an authenticated user could add arbitrary claims and escalate privileges indefinitely.

Affected Services

Anthos

Remediation

Upgrade your clusters to version 1.8.2.

Tracked CVEs

No tracked CVEs

References

https://cloud.google.com/support/bulletinshttps://cloud.google.com/anthos/clusters/docs/security-bulletins

Contributed by https://github.com/ramimac

Entry Status

Finalized

Disclosure Date

-

Exploitability Period

Ongoing

Known ITW Exploitation

-

Detection Methods

None

Piercing Index Rating

-

Discovered by

-

More vulnerabilities...

high

AWS Workspace client RCE

aws

If a user with AWS WorkSpaces 3.0.10-3.1.8 installed visits a page in their web browser with attacker controlled content, the attacker can get zero click RCE under common circumstances.

David Yesland, Rhino Security
medium

GCP IAP bypass

gcp

Convincing a victim to click a specially crafted link would allow the attacker to bypass the Identity-Aware Proxy (a core component of BeyondCorp).

Unknown
medium

Azure privilege escalation via Log Analytics role

azure

Azure AD users could escalate their privileges using the Log Analytics Contributor role to reach the full Subscription Contributor role.

Karl Fosaaen, NetSPI
View all