Описание
A security issue was discovered in Kubernetes where a user may be able to create a container with subpath volume mounts to access files & directories outside of the volume, including on the host filesystem.
Ссылки
- MitigationThird Party Advisory
- Mailing ListMitigation
- Third Party Advisory
- MitigationThird Party Advisory
- Mailing ListMitigation
- Third Party Advisory
Уязвимые конфигурации
Одно из
EPSS
8.8 High
CVSS3
8.1 High
CVSS3
5.5 Medium
CVSS2
Дефекты
Связанные уязвимости
A security issue was discovered in Kubernetes where a user may be able to create a container with subpath volume mounts to access files & directories outside of the volume, including on the host filesystem.
A security issue was discovered in Kubernetes where a user may be able to create a container with subpath volume mounts to access files & directories outside of the volume, including on the host filesystem.
A security issue was discovered in Kubernetes where a user may be able ...
Files or Directories Accessible to External Parties in kubernetes
Уязвимость программы для оркестровки контейнеризированных приложений Kubernetes, связанная с недостатками разграничения доступа, позволяющая нарушителю обойти введенные ограничения безопасности
EPSS
8.8 High
CVSS3
8.1 High
CVSS3
5.5 Medium
CVSS2