FeedlyFeedly
CVEsCVEs
Threat IntelligenceThreat Intelligence
Threat IntelligenceThreat Intelligence
Log in
ChangelogChangelog
ChangelogChangelog
Log in
Log in
Start Free Trial
Start Free Trial
FeedlyFeedly
CVEsCVEs
Threat IntelligenceThreat Intelligence
Threat IntelligenceThreat Intelligence
Log in
ChangelogChangelog
ChangelogChangelog
Log in
Log in
Start Free Trial
Start Free Trial

CVE-2024-9693

Incorrect Authorization (CWE-863)

Published: Nov 14, 2024 / Updated: 5d ago

010
CVSS 8.5EPSS 0.04%High
CVE info copied to clipboard

Summary

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.0 prior to 17.3.7, starting from 17.4 prior to 17.4.4, and starting from 17.5 prior to 17.5.2, which could have allowed unauthorized access to the Kubernetes agent in a cluster under specific configurations. This vulnerability is related to incorrect authorization (CWE-863).

Impact

This vulnerability could allow an attacker to gain unauthorized access to the Kubernetes agent in a cluster under specific configurations. Given the CVSS score of 8.5 (High severity) and the impact ratings, successful exploitation could lead to a high impact on confidentiality, integrity, and availability of the affected systems. The attack vector is network-based, requires low privileges, and no user interaction, but has high attack complexity. The scope is changed, which means the vulnerability can affect resources beyond its security scope.

Exploitation

There is no evidence that a public proof-of-concept exists. There is no evidence of proof of exploitation at the moment.

Patch

Patches are available. Users should upgrade to GitLab version 17.3.7, 17.4.4, or 17.5.2 or later, depending on their current version track.

Mitigation

1. Upgrade GitLab to the latest patched version (17.3.7, 17.4.4, or 17.5.2 or later) as soon as possible. 2. If immediate patching is not possible, monitor Kubernetes agent activities closely for any signs of unauthorized access. 3. Implement network segmentation to limit access to the Kubernetes agent. 4. Review and strengthen authorization mechanisms for Kubernetes agent access. 5. Regularly audit and update access controls for GitLab and associated Kubernetes clusters.

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Timeline

CVE Assignment

NVD published the first details for CVE-2024-9693

Nov 14, 2024 at 11:15 AM
CVSS

A CVSS base score of 8.5 has been assigned.

Nov 14, 2024 at 11:20 AM / nvd
First Article

Feedly found the first article mentioning CVE-2024-9693. See article

Nov 14, 2024 at 11:22 AM / Vulners.com RSS Feed
CVSS Estimate

Feedly estimated the CVSS score as MEDIUM

Nov 14, 2024 at 11:23 AM
Detection in Vulnerability Scanners

Detection for the vulnerability has been added to Nessus (210944)

Nov 14, 2024 at 6:15 PM
EPSS

EPSS Score was set to: 0.04% (Percentile: 10.2%)

Nov 15, 2024 at 10:25 AM
Static CVE Timeline Graph

Affected Systems

Gitlab/gitlab
+null more

News

Weekly Threat Landscape Digest – Week 47
HawkEye / 22h
From sophisticated zero-day exploits to novel malware campaigns, this week’s Hawkeye Security Advisory brings you actionable insights into the latest threats and how to mitigate them. The BrazenBamboo APT group is actively exploiting an unpatched zero-day vulnerability in Fortinet’s FortiClient VPN software for Windows.
GitLab Fixes Critical Kubernetes Agent Takeover Vulnerability
Gridinsoft Blog / 4d
Users are advised to apply the updates as soon as possible, as one of the flaws is rated as severe and can potentially lead to Kubernetes agents takeover. Main attention is attached to the flaw CVE-2024-9693, which grants unauthorized access to Kubernetes agents.
Unauthorized Access to Kubernetes Agent in GitLab CE/EE Clusters
4d
Gitlab - HIGH - CVE-2024-9693 An issue was discovered in GitLab CE/EE affecting all versions starting from 16.0 prior to 17.3.7, starting from 17.4 prior to 17.4.4, and starting from 17.5 prior to 17.5.2, which could have allowed unauthorized access to the Kubernetes agent in a cluster under specific configurations.
CVE-2024-9693:GitLab 为 Kubernetes 代理发布关键补丁
unSafe.sh - 不安全 / 5d
error code: 521
CVE-2024-9693:GitLab 为 Kubernetes 代理发布关键补丁
unSafe.sh - 不安全 / 5d
See 20 more articles and social media posts

CVSS V3.1

Attack Vector:Network
Attack Complexity:High
Privileges Required:Low
User Interaction:None
Scope:Changed
Confidentiality:High
Integrity:High
Availability Impact:High

Categories

CVSS 8.5(18246)CWE-863(2416)

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI

Feedly Threat Intelligence30-day free trial