VDB
GO-2022-0885
GO-2022-0885
PUBLISHED
Improper Authentication in Kubernetes in k8s.io/kubernetes
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| k8s.io | kubernetes | 0, 1.18.0, 1.17.0 |
Timeline
- Aug 21, 2024 CVE Published
- Feb 4, 2026 CVE Updated
References
- https://github.com/bottlerocket-os/bottlerocket/security/advisories/GHSA-wqv3-8cm6-h6wg advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1843358 url
- https://github.com/kubernetes/kubernetes/issues/92315 url
- https://github.com/tabbysable/POC-2020-8558 url
- https://groups.google.com/g/kubernetes-announce/c/sI4KmlH3S2I/m/TljjxOBvBQAJ url
- https://groups.google.com/g/kubernetes-security-announce/c/B1VegbBDMTE url
- https://labs.bishopfox.com/tech-blog/bad-pods-kubernetes-pod-privilege-escalation url
- https://security.netapp.com/advisory/ntap-20200821-0001 url
- https://www.openwall.com/lists/oss-security/2020/07/08/1 url