CVE-2023-6476 : A flaw was found in CRI-O that involves an experimental annotation leading to a

A flaw was found in CRI-O that involves an experimental annotation leading to a container being unconfined. This may allow a pod to specify and get any amount of memory/cpu, circumventing the kubernetes scheduler and potentially resulting in a denial of service in the node.

Published 2024-01-09 22:15:44

Updated 2024-02-04 20:15:46

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2023-6476

Redhat » Openshift Container Platform » Version: 3.11
cpe:2.3:a:redhat:openshift_container_platform:3.11:*:*:*:*:*:*:*
Matching versions
Redhat » Openshift Container Platform » Version: 4.13
cpe:2.3:a:redhat:openshift_container_platform:4.13:*:*:*:*:*:*:*
Matching versions
When used together with: Redhat » Enterprise Linux » Version: 8.0
When used together with: Redhat » Enterprise Linux » Version: 9.0
Redhat » Openshift Container Platform » Version: 4.14
cpe:2.3:a:redhat:openshift_container_platform:4.14:*:*:*:*:*:*:*
Matching versions
When used together with: Redhat » Enterprise Linux » Version: 8.0
When used together with: Redhat » Enterprise Linux » Version: 9.0

Exploit prediction scoring system (EPSS) score for CVE-2023-6476

EPSS FAQ

0.12%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 48 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-6476

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST	2024-01-18
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	2.8	3.6	Red Hat, Inc.	2024-01-09
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2023-6476

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

Assigned by: secalert@redhat.com (Secondary)
CWE-770 Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.
Assigned by:
- nvd@nist.gov (Primary)
- secalert@redhat.com (Secondary)

References for CVE-2023-6476

https://access.redhat.com/errata/RHSA-2024:0207

RHSA-2024:0207 - Security Advisory - Red Hat Customer Portal
Vendor Advisory
https://access.redhat.com/security/cve/CVE-2023-6476

CVE-2023-6476- Red Hat Customer Portal
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2253994

2253994 – (CVE-2023-6476) CVE-2023-6476 cri-o: Pods are able to break out of resource confinement on cgroupv2
Issue Tracking;Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:0195

RHSA-2024:0195 - Security Advisory - Red Hat Customer Portal
Vendor Advisory

Jump to

Vulnerability Details : CVE-2023-6476

Products affected by CVE-2023-6476

Exploit prediction scoring system (EPSS) score for CVE-2023-6476

CVSS scores for CVE-2023-6476

CWE ids for CVE-2023-6476

References for CVE-2023-6476