Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2017-1002101

Опубликовано: 12 мар. 2018
Источник: redhat
CVSS3: 7.2
EPSS Средний

Описание

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type (including non-privileged pods, subject to file permissions) can access files/directories outside of the volume, including the host's filesystem.

It was found that volume security can be sidestepped with innocent emptyDir and subpath. This could give an attacker with access to a pod full control over the node host by gaining access to docker socket.

Отчет

This flaw allows a pod to mount any part of the host filesystem. The pod will run with the security contraints placed on the user but could read anything with o=rx mode and appropriate SELinux label.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 7kubernetesWill not fix
Red Hat Storage 3heketiNot affected
Red Hat OpenShift Container Platform 3.3atomic-openshiftFixedRHSA-2018:047512.03.2018
Red Hat OpenShift Container Platform 3.4atomic-openshiftFixedRHSA-2018:047512.03.2018
Red Hat OpenShift Container Platform 3.5atomic-openshiftFixedRHSA-2018:047512.03.2018
Red Hat OpenShift Container Platform 3.6atomic-openshiftFixedRHSA-2018:047512.03.2018
Red Hat OpenShift Container Platform 3.7atomic-openshiftFixedRHSA-2018:047512.03.2018

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
https://bugzilla.redhat.com/show_bug.cgi?id=1525130kubernetes: Volume security can be sidestepped with innocent emptyDir and subpath

EPSS

Процентиль: 97%
0.33014
Средний

7.2 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2017-1002101

CVSS3: 8.8
nvd
больше 7 лет назад

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type (including non-privileged pods, subject to file permissions) can access files/directories outside of the volume, including the host's filesystem.

debian логотип

CVE-2017-1002101

CVSS3: 8.8
debian
больше 7 лет назад

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to version ...

github логотип

GHSA-rqgw-vh6p-qf7j

CVSS3: 9.6
github
около 3 лет назад

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type (including non-privileged pods, subject to file permissions) can access files/directories outside of the volume, including the host's filesystem.

oracle-oval логотип

ELSA-2018-4061

oracle-oval
около 7 лет назад

ELSA-2018-4061: kubernetes security update (IMPORTANT)

suse-cvrf логотип

openSUSE-SU-2020:0554-1

suse-cvrf
около 5 лет назад

Security update for kubernetes

EPSS

Процентиль: 97%
0.33014
Средний

7.2 High

CVSS3