CRITICAL🇵🇱 Wersja polska

CVE-2024-53351

CVSS 9.8v3.1pub. 2025-03-21upd. 2025-04-01

Insecure permissions in pipecd v0.49 allow attackers to gain access to the service account's token, leading to escalation of privileges.

🤖 AI Analysis
How it works

The vulnerability classified as CWE-276 (Incorrect Default Permissions) consists of PipeCD v0.49 assigning overly permissive permissions to resources storing or exposing the service account token. An attacker, without any authentication and without requiring user interaction, is able to gain access to this token over the network. After hijacking the token, the attacker can operate with the permissions associated with the service account.

Impact

An attacker can hijack a service account token and perform privilege escalation, potentially gaining full control over the environment managed by PipeCD, including access to sensitive data, ability to modify configurations, and disruption of operational continuity.

Mitigation & patch

Patches available from the vendor should be applied according to references. It is recommended to check the official project repository (https://github.com/pipe-cd/pipecd) and the pipecd.dev website for information about available updates. Until updating, consider restricting network access to PipeCD components and implementing regular rotation of service account tokens.

Who is affected

PipeCD v0.49 (Linuxfoundation PipeCD)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Linuxfoundation Pipecd

    APP
    Linuxfoundation
    ≤ 0.49.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2026-53488CRITICAL9.4ten sam vendor

containerd is an open-source container runtime. In versions prior to 1.7.33, 2.3.2, 2.2.5, 2.1.9, and 2.0.10 t...

CVE-2026-44477CRITICAL9.4PL ✓ten sam vendor

CloudNativePG: eskalacja uprawnień do superużytkownika PostgreSQL przez metrics exporter

CVE-2026-37531CRITICAL9.8PL ✓ten sam vendor

AGL app-framework-main: Zip Slip + TOCTOU umożliwiają zapis dowolnych plików

CVE-2026-32604CRITICAL9.9PL ✓ten sam vendor

RCE w Spinnaker — wykonanie dowolnych poleceń na podach clouddriver

CVE-2026-32613CRITICAL9.9PL ✓ten sam vendor

Spinnaker Echo: nieograniczony dostęp SPeL umożliwia RCE