Missing authentication for critical function in Azure CycleCloud allows an authorized attacker to elevate privileges over a network.
How could an attacker exploit this vulnerability? An authenticated user who has the Cluster Creator role could exploit this vulnerability by using a cluster creation operation in a way that bypasses an authorization check. By doing so, the attacker could overwrite another user’s cluster, including a cluster owned by an administrator, and take ownership of it. What privileges could be gained by an attacker who successfully exploited the vulnerability? An attacker who successfully exploited this vulnerability could gain full control of the affected cluster that was overwritten and taken over. This could allow the attacker to run unauthorized code, remove or alter credentials associated with the cluster, and perform actions with the same level of access available within that cluster. What do I need to do to protect myself? Customers should update to Azure CycleCloud 8.9.1 (Build 8.9.1-3806), which includes the fix for this vulnerability. New installations and upgrades to an existing CycleCloud deployment will receive the updated packages containing the fix. For installation and upgrade guidance, see: Install CycleCloud Upgrade an existing CycleCloud installation Updated packages are available through Microsoft's package repositories and the Azure Marketplace image for CycleCloud 8.9.1.
<a href="https://www.linkedin.com/in/asaf-cohen-4103b75b/">Asaf Cohen</a> with <a href="https://xbreach.ai/">XBreach.ai</a>, XBREACH.AI TEAM with https://xbreach.ai/, XBREACH.AI TEAM with https://xbreach.ai/