CVE-2017-1002101 Information

Description

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type (including non-privileged pods, subject to file permissions) can access files/directories outside of the volume, including the host’s filesystem.

Vulnerability Type (CWE)

CWE-59

Published

2018-03-13

Last Modified

2019-10-09

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Base Score

9.6 CRITICAL

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

References

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html https://access.redhat.com/errata/RHSA-2018:0475 (Third Party Advisory) https://github.com/bgeesaman/subpath-exploit/ (Exploit,Third Party Advisory) https://github.com/kubernetes/kubernetes/issues/60813 (Issue Tracking,Mitigation,Vendor Advisory)