Update and rename gcp-anthos-predictable-seed.yaml to gcp-2021-022.yaml

wiz-sec · Nov 2, 2023 · 7c646f1 · 7c646f1
1 parent bc2a5d4
commit 7c646f1
Show file tree

Hide file tree

Showing 2 changed files with 30 additions and 29 deletions.
diff --git a/vulnerabilities/gcp-2021-022.yaml b/vulnerabilities/gcp-2021-022.yaml
@@ -0,0 +1,30 @@
+title: Predictible seed in Anthos Identity Service LDAP module
+slug: gcp-2021-022
+cves: null
+affectedPlatforms:
+- GCP
+affectedServices:
+- Anthos
+image: https://images.unsplash.com/photo-1458014854819-1a40aa70211c?auto=format&fit=crop&q=80&w=2070&ixlib=rb-4.0.3&ixid=M3wxMjA3fDB8MHxwaG90by1wYWdlfHx8fGVufDB8fHx8fA%3D%3D
+severity: Low
+discoveredBy:
+  name: null
+  org: null
+  domain: null
+  twitter: null
+disclosedAt: null
+publishedAt: 2021/09/22
+exploitabilityPeriod: Ongoing
+knownITWExploitation: null
+summary: |
+  A vulnerability was discovered in the Anthos Identity Service (AIS) LDAP module
+  of Anthos clusters on VMware versions 1.8 and 1.8.1 where a seed key used in generating
+  keys is predictable. With this vulnerability, an authenticated user could add arbitrary
+  claims and escalate privileges indefinitely.
+manualRemediation: |
+  Upgrade your clusters to version 1.8.2.
+detectionMethods: null
+contributor: https://github.com/ramimac
+references:
+- https://cloud.google.com/support/bulletins#gcp-2021-022
+- https://cloud.google.com/anthos/clusters/docs/security-bulletins#gcp-2021-022
diff --git a/vulnerabilities/gcp-anthos-predictable-seed.yaml b/vulnerabilities/gcp-anthos-predictable-seed.yaml