{ "threat_severity" : "Moderate", "public_date" : "2020-08-26T00:00:00Z", "bugzilla" : { "description" : "vault: GCP Auth Method Allows Authentication Bypass", "id" : "2167340", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2167340" }, "cvss3" : { "cvss3_base_score" : "8.2", "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N", "status" : "verified" }, "cwe" : "CWE-287", "details" : [ "HashiCorp Vault and Vault Enterprise versions 0.8.3 and newer, when configured with the GCP GCE auth method, may be vulnerable to authentication bypass. Fixed in 1.2.5, 1.3.8, 1.4.4, and 1.5.1.", "A flaw was found in Vault and Vault Enterprise (“Vault”). In affected versions of Vault, with the GCP Auth Method configured and under certain circumstances, the values relied upon by Vault to validate Google Compute Engine (GCE) VMs may be manipulated and bypass authentication." ], "affected_release" : [ { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-18T00:00:00Z", "advisory" : "RHSA-2023:2138", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/bare-metal-event-relay-operator-bundle:v4.13.0-39" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-18T00:00:00Z", "advisory" : "RHSA-2023:2138", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/bare-metal-event-relay-rhel8-operator:v4.13.0-42" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-18T00:00:00Z", "advisory" : "RHSA-2023:2138", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/baremetal-hardware-event-proxy-rhel8:v4.13.0-21" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-18T00:00:00Z", "advisory" : "RHSA-2023:2138", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/topology-aware-lifecycle-manager-operator-bundle:v4.13.0-70" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-18T00:00:00Z", "advisory" : "RHSA-2023:2138", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/topology-aware-lifecycle-manager-precache-rhel8:v4.13.0-45" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-18T00:00:00Z", "advisory" : "RHSA-2023:2138", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/topology-aware-lifecycle-manager-recovery-rhel8:v4.13.0-43" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-18T00:00:00Z", "advisory" : "RHSA-2023:2138", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/topology-aware-lifecycle-manager-rhel8-operator:v4.13.0-70" }, { "product_name" : "Red Hat OpenShift Container Platform 4.13", "release_date" : "2023-05-18T00:00:00Z", "advisory" : "RHSA-2023:2138", "cpe" : "cpe:/a:redhat:openshift:4.13::el8", "package" : "openshift4/ztp-site-generate-rhel8:v4.13.0-45" }, { "product_name" : "RHODF-4.13-RHEL-9", "release_date" : "2023-06-21T00:00:00Z", "advisory" : "RHSA-2023:3742", "cpe" : "cpe:/a:redhat:openshift_data_foundation:4.13::el9", "package" : "odf4/odf-rhel9-operator:v4.13.0-24" } ], "package_state" : [ { "product_name" : "Logging Subsystem for Red Hat OpenShift", "fix_state" : "Not affected", "package_name" : "openshift-logging/logging-loki-rhel9", "cpe" : "cpe:/a:redhat:logging:5" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Not affected", "package_name" : "openshift4/ose-installer-rhel9", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat Openshift Container Storage 4", "fix_state" : "Out of support scope", "package_name" : "ocs4/cephcsi-rhel8", "cpe" : "cpe:/a:redhat:openshift_container_storage:4" }, { "product_name" : "Red Hat Openshift Container Storage 4", "fix_state" : "Out of support scope", "package_name" : "ocs4/mcg-rhel8-operator", "cpe" : "cpe:/a:redhat:openshift_container_storage:4" }, { "product_name" : "Red Hat Openshift Container Storage 4", "fix_state" : "Out of support scope", "package_name" : "ocs4/ocs-rhel8-operator", "cpe" : "cpe:/a:redhat:openshift_container_storage:4" }, { "product_name" : "Red Hat Openshift Container Storage 4", "fix_state" : "Out of support scope", "package_name" : "ocs4/rook-ceph-rhel8-operator", "cpe" : "cpe:/a:redhat:openshift_container_storage:4" }, { "product_name" : "Red Hat Openshift Data Foundation 4", "fix_state" : "Not affected", "package_name" : "odf4/cephcsi-rhel9", "cpe" : "cpe:/a:redhat:openshift_data_foundation:4" }, { "product_name" : "Red Hat Openshift Data Foundation 4", "fix_state" : "Not affected", "package_name" : "odf4/mcg-rhel8-operator", "cpe" : "cpe:/a:redhat:openshift_data_foundation:4" }, { "product_name" : "Red Hat Openshift Data Foundation 4", "fix_state" : "Not affected", "package_name" : "odf4/ocs-rhel9-operator", "cpe" : "cpe:/a:redhat:openshift_data_foundation:4" }, { "product_name" : "Red Hat Openshift Data Foundation 4", "fix_state" : "Will not fix", "package_name" : "odf4/odf-multicluster-rhel9-operator", "cpe" : "cpe:/a:redhat:openshift_data_foundation:4" }, { "product_name" : "Red Hat Openshift Data Foundation 4", "fix_state" : "Not affected", "package_name" : "odf4/odr-rhel9-operator", "cpe" : "cpe:/a:redhat:openshift_data_foundation:4" }, { "product_name" : "Red Hat Openshift Data Foundation 4", "fix_state" : "Not affected", "package_name" : "odf4/rook-ceph-rhel8-operator", "cpe" : "cpe:/a:redhat:openshift_data_foundation:4" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2020-16251\nhttps://nvd.nist.gov/vuln/detail/CVE-2020-16251\nhttps://discuss.hashicorp.com/t/hcsec-2020-17-vault-s-gcp-auth-method-allows-authentication-bypass/18102" ], "name" : "CVE-2020-16251", "csaw" : false }