CVE-2024-36532 Information

Description

Insecure permissions in kruise v1.6.2 allows attackers to access sensitive data and escalate privileges by obtaining the service account’s token.

Reference

https://gist.github.com/HouqiyuA/43488e1d41110a5610146b87b2e88a02