A security issue was discovered in Kubernetes clusters with Windows nodes where BUILTIN\Users may be able to read container logs and NT AUTHORITY\Authenticated Users may be able to modify container logs.
History

Tue, 17 Sep 2024 23:00:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:openshift:4.12::el8

Fri, 13 Sep 2024 18:30:00 +0000

Type Values Removed Values Added
References

Mon, 09 Sep 2024 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat openshift
CPEs cpe:/a:redhat:openshift:4.13::el9
cpe:/a:redhat:openshift:4.14::el9
Vendors & Products Redhat
Redhat openshift

cve-icon MITRE

Status: PUBLISHED

Assigner: kubernetes

Published: 2024-07-18T18:15:25.270Z

Updated: 2024-09-13T17:05:30.545Z

Reserved: 2024-05-24T15:17:53.856Z

Link: CVE-2024-5321

cve-icon Vulnrichment

Updated: 2024-09-13T17:05:30.545Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-07-18T19:15:12.607

Modified: 2024-11-21T09:47:25.283

Link: CVE-2024-5321

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-07-18T00:00:00Z

Links: CVE-2024-5321 - Bugzilla