Vulnerability Description
The OpenFeature Operator allows users to expose feature flags to applications. Assuming the pre-existence of a vulnerability that allows for arbitrary code execution, an attacker could leverage the lax permissions configured on `open-feature-operator-controller-manager` to escalate the privileges of any SA in the cluster. The increased privileges could be used to modify cluster state, leading to DoS, or read sensitive data, including secrets. Version 0.2.32 mitigates this issue by restricting the resources the `open-feature-operator-controller-manager` can modify.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linuxfoundation | Openfeature | < 0.2.32 |
Related Weaknesses (CWE)
References
- https://github.com/open-feature/open-feature-operator/releases/tag/v0.2.32Release Notes
- https://github.com/open-feature/open-feature-operator/security/advisories/GHSA-cVendor Advisory
- https://github.com/open-feature/open-feature-operator/releases/tag/v0.2.32Release Notes
- https://github.com/open-feature/open-feature-operator/security/advisories/GHSA-cVendor Advisory
FAQ
What is CVE-2023-29018?
CVE-2023-29018 is a vulnerability with a CVSS score of 8.0 (HIGH). The OpenFeature Operator allows users to expose feature flags to applications. Assuming the pre-existence of a vulnerability that allows for arbitrary code execution, an attacker could leverage the la...
How severe is CVE-2023-29018?
CVE-2023-29018 has been rated HIGH with a CVSS base score of 8.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-29018?
Check the references section above for vendor advisories and patch information. Affected products include: Linuxfoundation Openfeature.