CVE-2021-25741

Опубликовано: 20 сент. 2021

Источник: ubuntu

Приоритет: medium

CVSS2: 5.5

CVSS3: 8.8

Описание

A security issue was discovered in Kubernetes where a user may be able to create a container with subpath volume mounts to access files & directories outside of the volume, including on the host filesystem.

Релиз	Статус	Примечание
devel	DNE
esm-apps/focal	not-affected	code not present
esm-apps/jammy	not-affected	code not present
esm-apps/noble	not-affected	code not present
focal	ignored	end of standard support, was needs-triage
jammy	not-affected	code not present
noble	not-affected	code not present
oracular	ignored	end of life, was needs-triage
plucky	DNE
upstream	needs-triage

Показывать по

Ссылки на источники

5.5 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2021-25741

CVSS3: 8.8

redhat

около 4 лет назад

CVE-2021-25741

CVSS3: 8.8

nvd

около 4 лет назад

CVE-2021-25741

CVSS3: 8.8

msrc

около 1 месяца назад

Symlink Exchange Can Allow Host Filesystem Access

CVE-2021-25741

CVSS3: 8.8

debian

около 4 лет назад

A security issue was discovered in Kubernetes where a user may be able ...

GHSA-f5f7-6478-qm6p

CVSS3: 8.1

github

около 4 лет назад

Files or Directories Accessible to External Parties in kubernetes

5.5 Medium

CVSS2

8.8 High

CVSS3

CVE-2021-25741

Описание

Пакет kubernetes

Ссылки на источники

Связанные уязвимости