Kubernetes sets incorrect permissions on Windows containers logs
Overview
Source
ID
GHSA-82m2-cv7p-4m75
Aliases
CVE-2024-5321
GO-2024-2994
Affected package
Description
A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTIN\Users may be able to read container logs and NT AUTHORITY\Authenticated Users may be able to modify container logs.
Impact
Severity
help_outline
Latest version of the CVSS score reported by the source of the advisory.
6.1 HIGH
Reference links
Summary
5.14k
Total packages affected
help_outline
Packages with at least one version that is affected by the advisory or has an affected dependency.
1.23k
Packages with a known fix
help_outline
Packages with versions affected by the advisory that have a greater version that is not affected.
0.38%
Total ecosystem affected
help_outline
The proportion of packages in the ecosystem that are affected by the advisory (fixed or not).
Affected Version: Introduced: 0, Fixed: 1.27.16, Introduced: 1.28.0, Fixed: 1.28.12, Introduced: 1.29.0, Fixed: 1.29.7, Introduced: 1.30.0, Fixed: 1.30.3
Patched/Unaffected
Affected