CVE-2024-5321

Published: Jul 18, 2024Modified: Nov 21, 2024

6.1

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

Exploitability: 1.8 / Impact: 4.2

Source: jordan@liggitt.net (Secondary)

Description

A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTIN\Users may be able to read container logs and NT AUTHORITY\Authenticated Users may be able to modify container logs.

Related CWEs

CWE-276

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

References (5)

https://github.com/kubernetes/kubernetes/issues/126161

Source: jordan@liggitt.net

https://groups.google.com/g/kubernetes-security-announce/c/81c0BHkKNt0

Source: jordan@liggitt.net

http://www.openwall.com/lists/oss-security/2024/07/17/3

Source: af854a3a-2127-422b-91ae-364da2661108

https://github.com/kubernetes/kubernetes/issues/126161

Source: af854a3a-2127-422b-91ae-364da2661108

https://groups.google.com/g/kubernetes-security-announce/c/81c0BHkKNt0

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.