Описание
A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes running kubernetes-csi-proxy may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes running kubernetes-csi-proxy.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/focal | not-affected | code not present |
| esm-apps/jammy | not-affected | code not present |
| esm-apps/noble | not-affected | code not present |
| focal | ignored | end of standard support, was needs-triage |
| jammy | not-affected | code not present |
| noble | not-affected | code not present |
| oracular | ignored | end of life, was needs-triage |
| plucky | DNE | |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
8.8 High
CVSS3
Связанные уязвимости
A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes running kubernetes-csi-proxy may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes running kubernetes-csi-proxy.
A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes running kubernetes-csi-proxy may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes running kubernetes-csi-proxy.
A security issue was discovered in Kubernetes where a user that can c ...
Kubernetes csi-proxy vulnerable to privilege escalation due to improper input validation
Уязвимость компонента CSI Proxy программного средства управления кластерами виртуальных машин Kubernetes, позволяющая нарушителю повысить свои привилегии
EPSS
8.8 High
CVSS3