IBM has fixed a high-severity security vulnerability affecting its Cloud Databases (ICD) for PostgreSQL product that could be potentially exploited to tamper with internal repositories and run unauthorized code.
The privilege escalation flaw (CVSS score: 8.8), dubbed “Hell’s Keychain” by cloud security firm Wiz, has been described as a “first-of-its-kind supply-chain attack vector impacting a cloud provider’s infrastructure.”
Successful exploitation of the bug could enable a malicious actor to remotely execute code in customers’ environments and even read or modify data stored in the PostgreSQL database.
“The vulnerability consists of a chain of three exposed secrets (Kubernetes service account token, private container registry password, CI/CD server credentials) coupled with overly permissive network access to internal build servers,” Wiz researchers Ronen Shustin and Shir Tamari said.
Hell’s Keychain commences with an SQL injection flaw in ICD that grants an attacker superuser (aka “ibm”) privileges, which is then used to execute arbitrary commands on the underlying virtual machine hosting the database instance.
images from Hacker News