Red Hat Hive VCenter Credentials Exposure Vulnerability in Multicluster Engine and Advanced Cluster Management

Vulnerability

A vulnerability in Hive, part of Red Hat's Multicluster Engine (MCE) and Advanced Cluster Management (ACM), allows VCenter credentials to be exposed in the ClusterProvision object after a VSphere cluster is provisioned. This occurs because the credentials, supplied via a Secret in the same namespace as the ClusterDeployment, are echoed back in the ClusterProvision object. Users with read access to ClusterProvision objects can extract these sensitive credentials, potentially leading to unauthorized access to VCenter, cluster management, and privilege escalation.

Impact

Exploitation of this vulnerability could result in unauthorized access to VCenter, allowing for improper cluster management and potential privilege escalation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Red Hat Hive VCenter Credentials Exposure Vulnerability in Multicluster Engine and Advanced Cluster Management

Vulnerability

Impact

Affected Products

Red Hat Advanced Cluster Management

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating