A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes.
Metrics
Affected Vendors & Products
References
History
Fri, 22 Nov 2024 12:00:00 +0000
Fri, 06 Sep 2024 15:45:00 +0000
MITRE
Status: PUBLISHED
Assigner: kubernetes
Published: 2023-11-14T20:32:08.411Z
Updated: 2024-09-06T14:18:44.918Z
Reserved: 2023-10-11T16:12:14.212Z
Link: CVE-2023-5528
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-11-14T21:15:14.123
Modified: 2024-11-21T08:41:56.820
Link: CVE-2023-5528
Redhat