Vulnerability Details : CVE-2019-11248
Potential exploit
The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for limited denial of service. Versions prior to 1.15.0, 1.14.4, 1.13.8, and 1.12.10 are affected. The issue is of medium severity, but not exposed by the default configuration.
Vulnerability category: Denial of service
Products affected by CVE-2019-11248
- cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.0:alpha0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.0:alpha1:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.3:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.4:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.6:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.7:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.3:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.15.0:alpha0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.15.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.15.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.1:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.1:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.2:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.0:alpha2:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.0:alpha3:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.0:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.15.0:alpha1:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.15.0:alpha2:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.15.0:alpha3:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.15.0:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:alpha0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:alpha1:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:alpha2:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:alpha3:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.4:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.5:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.5:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.6:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.1:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.1:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.2:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.2:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.2:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.3:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.7:beta.0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.13.8:beta.0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.0:-:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.3:beta0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.14.4:beta.0:*:*:*:*:*:*
- cpe:2.3:a:kubernetes:kubernetes:1.15.0:beta2:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2019-11248
85.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2019-11248
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.4
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:P |
10.0
|
4.9
|
NIST | |
6.5
|
MEDIUM | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L |
3.9
|
2.5
|
Kubernetes | |
8.2
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L |
3.9
|
4.2
|
NIST |
CWE ids for CVE-2019-11248
-
The product uses a primary channel for administration or restricted functionality, but it does not properly protect the channel.Assigned by: jordan@liggitt.net (Secondary)
-
The product does not perform an authorization check when an actor attempts to access a resource or perform an action.Assigned by: nvd@nist.gov (Primary)
References for CVE-2019-11248
-
https://security.netapp.com/advisory/ntap-20190919-0003/
Third Party Advisory
-
https://groups.google.com/d/msg/kubernetes-security-announce/pKELclHIov8/BEDtRELACQAJ
[ANNOUNCE] CVE-2019-11248: /debug/pprof exposed on kubelet's healthz port - Google GroepenMailing List;Third Party Advisory
-
https://github.com/kubernetes/kubernetes/issues/81023
CVE-2019-11248: /debug/pprof exposed on kubelet's healthz port · Issue #81023 · kubernetes/kubernetes · GitHubPatch;Third Party Advisory
Jump to