GHSA-227x-7mh8-3cf6
Suggest an improvement- Source
- https://github.com/advisories/GHSA-227x-7mh8-3cf6
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/09/GHSA-227x-7mh8-3cf6/GHSA-227x-7mh8-3cf6.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/GHSA-227x-7mh8-3cf6
- Aliases
- Published
- 2025-09-25T16:39:16Z
- Modified
- 2025-10-23T20:12:12Z
- Severity
-
- 9.9 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVSS Calculator
- Summary
- Gardener provider extensions vulnerable to code injection when Terraform is used for infrastructure provisioning
- Details
-
Impact
A security vulnerability was discovered in Gardener when Terraformer is used for infrastructure provisioning. This vulnerability could allow a user with administrative privileges for a Gardener project to obtain control over the seed cluster where the shoot cluster is managed.
This CVE affects all Gardener installations where Terraformer is used/can be enabled for infrastructure provisioning with any of the affected components mentioned below.
Affected Components
• gardener-extension-provider-gcp • gardener-extension-provider-azure • gardener-extension-provider-openstack • gardener-extension-provider-aws
Affected Versions
• gardener-extension-provider-gcp < v1.46.0 • gardener-extension-provider-azure < v1.55.0 • gardener-extension-provider-openstack < v1.49.0 • gardener-extension-provider-aws < v1.64.0
Fixed versions
• gardener-extension-provider-gcp >= v1.46.0 • gardener-extension-provider-azure >= v1.55.0 • gardener-extension-provider-openstack >= v1.49.0 • gardener-extension-provider-aws >= v1.64.0
How do I mitigate this vulnerability?
Update to a fixed version.
- Database specific
{ "nvd_published_at": "2025-09-25T15:16:13Z", "cwe_ids": [ "CWE-20", "CWE-94" ], "severity": "CRITICAL", "github_reviewed": true, "github_reviewed_at": "2025-09-25T16:39:16Z" }- References
-
- https://github.com/gardener/gardener-extension-provider-aws/security/advisories/GHSA-227x-7mh8-3cf6
- https://nvd.nist.gov/vuln/detail/CVE-2025-59823
- https://github.com/gardener/gardener-extension-provider-aws/commit/cb5045fc146248296994804bbfe27bd896938bf2
- https://github.com/gardener/gardener-extension-provider-azure/commit/4573a4404969f89781ed6cf72e90554bc6ae2020
- https://github.com/gardener/gardener-extension-provider-gcp/commit/51111b4f60c33c60dfdf18b1fc50f7ec8d8f70ac
- https://github.com/gardener/gardener-extension-provider-openstack/commit/2ed6f0fe1be90fbef5d6093eb0b8325c8421b8d8
- https://github.com/gardener/gardener-extension-provider-aws
- https://github.com/gardener/gardener-extension-provider-aws/releases/tag/v1.64.0
- https://github.com/gardener/gardener-extension-provider-azure/releases/tag/v1.55.0
- https://github.com/gardener/gardener-extension-provider-gcp/releases/tag/v1.46.0
- https://github.com/gardener/gardener-extension-provider-openstack/releases/tag/v1.49.0
- https://pkg.go.dev/vuln/GO-2025-3981
Affected packages
Go
github.com/gardener/gardener-extension-provider-aws
Package
- Name
- github.com/gardener/gardener-extension-provider-aws
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/gardener/gardener-extension-provider-aws
github.com/gardener/gardener-extension-provider-gcp
Package
- Name
- github.com/gardener/gardener-extension-provider-gcp
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/gardener/gardener-extension-provider-gcp
github.com/gardener/gardener-extension-provider-azure
Package
- Name
- github.com/gardener/gardener-extension-provider-azure
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/gardener/gardener-extension-provider-azure
github.com/gardener/gardener-extension-provider-openstack
Package
- Name
- github.com/gardener/gardener-extension-provider-openstack
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/gardener/gardener-extension-provider-openstack