A security issue was discovered in Kubernetes where a user that can
create pods on Windows nodes running kubernetes-csi-proxy may be able to
escalate to admin privileges on those nodes. Kubernetes clusters are
only affected if they include Windows nodes running
kubernetes-csi-proxy.
References
Link | Resource |
---|---|
https://github.com/kubernetes/kubernetes/issues/119594 | Issue Tracking Vendor Advisory |
https://groups.google.com/g/kubernetes-security-announce/c/lWksE2BoCyQ | Mailing List |
https://security.netapp.com/advisory/ntap-20231221-0004/ |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: kubernetes
Published: 2023-11-03T17:34:10.188Z
Updated: 2023-11-03T17:34:10.188Z
Reserved: 2023-07-24T20:24:06.695Z
Link: CVE-2023-3893
JSON object: View
NVD Information
Status : Modified
Published: 2023-11-03T18:15:08.623
Modified: 2023-12-21T22:15:14.160
Link: CVE-2023-3893
JSON object: View
Redhat Information
No data.
CWE