Description

Aiven Operator allows you to provision and manage Aiven Services from your Kubernetes cluster. From 0.31.0 to before 0.37.0, a developer with create permission on ClickhouseUser CRDs in their own namespace can exfiltrate secrets from any other namespace — production database credentials, API keys, service tokens — with a single kubectl apply. The operator reads the victim's secret using its ClusterRole and writes the password into a new secret in the attacker's namespace. The operator acts as a confused deputy: its ServiceAccount has cluster-wide secret read/write (aiven-operator-role ClusterRole), and it trusts user-supplied namespace values in spec.connInfoSecretSource.namespace without validation. No admission webhook enforces this boundary — the ServiceUser webhook returns nil, and no ClickhouseUser webhook exists. This vulnerability is fixed in 0.37.0.

INFO

Published Date :

2026-04-09T17:14:07.330Z

Last Modified :

2026-04-10T14:08:22.087Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-39961 vulnerability.

Vendors Products
Aiven
  • Aiven-operator
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-39961.

URL Resource
https://github.com/aiven/aiven-operator/commit/032c9ba63257fdd2fddfb7f73f71830e371ff182 cve-icon cve-icon
https://github.com/aiven/aiven-operator/releases/tag/v0.37.0 cve-icon cve-icon
https://github.com/aiven/aiven-operator/security/advisories/GHSA-99j8-wv67-4c72 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact