Описание
A flaw was found in KubeVirt Containerized Data Importer (CDI). This vulnerability allows a user to clone PersistentVolumeClaims (PVCs) from unauthorized namespaces, resulting in unauthorized access to data via the DataImportCron PVC source mechanism.
EPSS
Процентиль: 1%
0.00011
Низкий
8.5 High
CVSS3
Дефекты
CWE-639
Связанные уязвимости
CVSS3: 8.5
github
12 дней назад
A flaw was found in KubeVirt Containerized Data Importer (CDI). This vulnerability allows a user to clone PersistentVolumeClaims (PVCs) from unauthorized namespaces, resulting in unauthorized access to data via the DataImportCron PVC source mechanism.
EPSS
Процентиль: 1%
0.00011
Низкий
8.5 High
CVSS3
Дефекты
CWE-639