Strix
26.1K

CVE-2023-48225

CRITICALCVSS 9.1/10EPSS 0.80%

Last modified

CVE-2023-48225 is a critical-severity vulnerability rated 9.1/10 on the CVSS scale. Laf is a cloud development platform. Prior to version 1.0.0-beta.13, the control of LAF app enV is not strict enough, and in certain scenarios of privatization environment, it may lead to sensitive information leakage in secret and configmap. EPSS estimates a 0.80% chance of exploitation in the next 30 days.

Description

Laf is a cloud development platform. Prior to version 1.0.0-beta.13, the control of LAF app enV is not strict enough, and in certain scenarios of privatization environment, it may lead to sensitive information leakage in secret and configmap. In ES6 syntax, if an obj directly references another obj, the name of the obj itself will be used as the key, and the entire object structure will be integrated intact. When constructing the deployment instance of the app, env was found from the database and directly inserted into the template, resulting in controllability here. Sensitive information in the secret and configmap can be read through the k8s envFrom field. In a privatization environment, when `namespaceConf. fixed` is marked, it may lead to the leakage of sensitive information in the system. As of time of publication, it is unclear whether any patches or workarounds exist.

Metrics

CVSS 3.1
9.1/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

EPSS Probability
0.80%

51.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersionsUpdate
LafLaf0.1.5
LafLaf0.4.0
LafLaf0.4.1
LafLaf0.4.2
LafLaf0.4.3
LafLaf0.4.4
LafLaf0.4.5
LafLaf0.4.6
LafLaf0.4.7
LafLaf0.4.8
LafLaf0.4.9
LafLaf0.4.10
LafLaf0.4.11
LafLaf0.4.12
LafLaf0.4.13
LafLaf0.4.14
LafLaf0.4.15
LafLaf0.4.16
LafLaf0.4.17
LafLaf0.4.18
LafLaf0.4.19
LafLaf0.4.20
LafLaf0.4.21Alpha0
LafLaf0.5.0
LafLaf0.5.1
LafLaf0.5.2
LafLaf0.5.3
LafLaf0.5.4
LafLaf0.5.5
LafLaf0.5.6
LafLaf0.5.7
LafLaf0.5.8Alpha0
LafLaf0.6.0
LafLaf0.6.1
LafLaf0.6.2
LafLaf0.6.3
LafLaf0.6.4
LafLaf0.6.5
LafLaf0.6.6
LafLaf0.6.7
LafLaf0.6.8
LafLaf0.6.9
LafLaf0.6.10
LafLaf0.6.11
LafLaf0.6.12
LafLaf0.6.13
LafLaf0.6.14
LafLaf0.6.15
LafLaf0.6.16
LafLaf0.6.17

Showing 50 of 83 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2023-48225?
Laf is a cloud development platform. Prior to version 1.0.0-beta.13, the control of LAF app enV is not strict enough, and in certain scenarios of privatization environment, it may lead to sensitive information leakage in secret and configmap. In ES6 syntax, if an obj directly references another obj, the name of the obj itself will be used as the key, and the entire object structure will be integrated intact. When constructing the deployment instance of the app, env was found from the database and directly inserted into the template, resulting in controllability here. Sensitive information in the secret and configmap can be read through the k8s envFrom field. In a privatization environment, when `namespaceConf. fixed` is marked, it may lead to the leakage of sensitive information in the system. As of time of publication, it is unclear whether any patches or workarounds exist.
How severe is CVE-2023-48225?
CVE-2023-48225 has a CVSS score of 9.1/10 (CRITICAL severity). The EPSS model estimates a 0.80% probability of exploitation in the next 30 days.
How do I fix CVE-2023-48225?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-48225?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST