当前位置:首页 > 报告详情

隔离的假象:CICD 服务器中的隔离失效如何导致远程代码执行和隐私风险.pdf

上传人: 竿*** 编号:981831 2025-11-29 106页 4.23MB

1、#BHAS BlackHatEventsThe Illusion of Isolation:How Isolation Failures in CI/CD Servers Lead to RCE and Privacy RisksSpeakers:Tian Zhou,YiWen Wang#BHAS BlackHatEventsAbout UsCTFer NeSEWeb Security ResearcherTian Zhou(byc_404)YiWen Wang(rebirth)CTFer NeSEWeb Security Researcher#BHAS BlackHatEventsOutli

2、ne1.Introduction2.Exploit the Isolation in CI/CD3.Real World Cases4.Takeways#BHAS BlackHatEventsOutline1.Introduction#BHAS BlackHatEventsBasic Workflow of CI/CD A typical CI/CD workflow looks like#BHAS BlackHatEventsKey Components of CIServerWorkersCI/CD Platform#BHAS BlackHatEventsKey Components of

3、 CIServer Integrating with SCM Audit log of changes Design your own pipelines Send command to Workers Maintains build records#BHAS BlackHatEventsKey Components of CIWorkers Workers/Agents/Runners They are all the same!Runs on any OS Could be a machine,a container/pod Run jobs in a pipeline#BHAS Blac

4、kHatEventsIsolation MechanismsBy default,Server configure jobs and let workers finish themWorkers and server are isolated by physical machine boundaries or container mechanisms#BHAS BlackHatEventsIsolation MechanismsCommand executes on different machinesCode may built in isolated ContainersCode shou

5、ld be separated in filesystem-levelFile Isolationmachine-amachine-b#BHAS BlackHatEventsIsolation MechanismsSever and worker are isolated by physical boundaries Projects are built in isolated virtualized environmentProjects implement access control through RBAC policiesData Isolation#BHAS BlackHatEve

6、ntsIsolation MechanismsIt looks like all CI/CD functionalities follow the isolation mechanisms But is that really the case?Lets see if flaws of isolation mechanisms lead to Security Problems#BHAS BlackHatEventsOutline2.Exploit the Isolation in CI/CD#BHAS BlackHatEventsAttack the CI/CDAttack Ways#BHA

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
1. **CI/CD 安全风险**:文章指出,CI/CD 服务器中的隔离机制缺陷可能导致远程代码执行(RCE)和隐私风险。 2. **攻击方式**:攻击者可能通过弱密码、供应链攻击、注入恶意代码、依赖链滥用、PPE(管道执行中毒)等手段攻击 CI/CD 服务器。 3. **SCM 攻击**:源代码管理(SCM)系统是攻击目标,因为它们允许用户控制仓库配置,可能存在命令注入和参数注入漏洞。 4. **实际案例**:文章列举了 Atlassian Bamboo、GoCD 和 OneDev 等系统的安全漏洞,如任意文件读取、环境变量注入、服务器端 RCE 和权限提升。 5. **隔离机制缺陷**:文章强调,即使 CI/CD 服务器具有隔离机制,也可能存在安全漏洞,如文件隔离不足、路径泄露和服务器端命令执行。 6. **最佳实践**:文章建议,在执行管道时始终在工人端处理代码,并确保代码与关键基础设施隔离,以减少安全风险。
**CI/CD隔离漏洞揭秘** CI/CD服务漏洞分析** CI/CD隔离机制缺陷**
客服
商务合作
小程序
服务号
折叠