Описание
MARIN3R is a lightweight, CRD based envoy control plane for kubernetes. In versions 0.13.3 and below, there is a cross-namespace secret access vulnerability in the project's DiscoveryServiceCertificate which allows users to bypass RBAC and access secrets in unauthorized namespaces. This issue is fixed in version 0.13.4.
EPSS
Процентиль: 10%
0.00035
Низкий
Дефекты
CWE-862
Связанные уязвимости
EPSS
Процентиль: 10%
0.00035
Низкий
Дефекты
CWE-862