Описание
A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes.
Ссылки
- Issue TrackingPatch
- Mailing List
- Issue TrackingPatch
- Mailing List
- PatchRelease Notes
- PatchRelease Notes
- PatchRelease Notes
- Third Party Advisory
Уязвимые конфигурации
Одновременно
Одно из
Одно из
EPSS
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
Связанные уязвимости
A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes.
A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes.
A security issue was discovered in Kubernetes where a user that can cr ...
Kubernetes Improper Input Validation vulnerability
EPSS
7.2 High
CVSS3
8.8 High
CVSS3