CVE-2026-23742

Exploit

EPSS 0.02%
Veröffentlicht 16.01.2026 20:07:46
Zuletzt bearbeitet 18.02.2026 16:28:20
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Skipper is an HTTP router and reverse proxy for service composition. The default skipper configuration before 0.23.0 was -lua-sources=inline,file. The problem starts if untrusted users can create lua filters, because of -lua-sources=inline , for example through a Kubernetes Ingress resource. The configuration inline allows these user to create a script that is able to read the filesystem accessible to the skipper process and if the user has access to read the logs, they an read skipper secrets. This vulnerability is fixed in 0.23.0.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 3 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Zalando ≫ Skipper Version < 0.23.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.054

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-250 Execution with Unnecessary Privileges

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

CWE-522 Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

https://github.com/zalando/skipper/security/advisories/GHSA-cc8m-98fm-rc9g

Vendor Advisory

Exploit

Mitigation

https://github.com/zalando/skipper/commit/0b52894570773b29e2f3c571b94b4211ef8fa714

Patch

https://github.com/zalando/skipper/releases/tag/v0.23.0

Product

Release Notes

https://nvd.nist.gov/vuln/detail/CVE-2026-23742

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-23742

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-23742

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-23742